General

  • Target

    67b1e96d7d7ce6991390d47a028849d173c63aad039578b3623697e96bbfbdec

  • Size

    2.6MB

  • Sample

    241109-2yw8hathlc

  • MD5

    772677dae869c9fd69a59c8b2205d688

  • SHA1

    a0f6e849ca24c09845d406f9db35bb1fedaefba2

  • SHA256

    67b1e96d7d7ce6991390d47a028849d173c63aad039578b3623697e96bbfbdec

  • SHA512

    11b0eb9edeb796c3c3a1af06c3fbdc557a204ad4b67593789bc6b0e59fd43884ee71a7dafac34689eac3aced4af1767f75f7ef59760d627c4831c5a50e7945d1

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBfB/bS:sxX7QnxrloE5dpUpQb

Malware Config

Targets

    • Target

      67b1e96d7d7ce6991390d47a028849d173c63aad039578b3623697e96bbfbdec

    • Size

      2.6MB

    • MD5

      772677dae869c9fd69a59c8b2205d688

    • SHA1

      a0f6e849ca24c09845d406f9db35bb1fedaefba2

    • SHA256

      67b1e96d7d7ce6991390d47a028849d173c63aad039578b3623697e96bbfbdec

    • SHA512

      11b0eb9edeb796c3c3a1af06c3fbdc557a204ad4b67593789bc6b0e59fd43884ee71a7dafac34689eac3aced4af1767f75f7ef59760d627c4831c5a50e7945d1

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBfB/bS:sxX7QnxrloE5dpUpQb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks