General

  • Target

    70df40d7e8b964b54d367d606864559ca3f3bcb118255c8a6fd41449aeb0e821

  • Size

    2.6MB

  • Sample

    241109-3be65svakq

  • MD5

    828f7fc418260b41a1ec3fbac8769558

  • SHA1

    7b2e4b404c27ecec8ca475c5cd90c29fd1429c16

  • SHA256

    70df40d7e8b964b54d367d606864559ca3f3bcb118255c8a6fd41449aeb0e821

  • SHA512

    ab36f635ef55a79865fa6ec119c72cebf956ac9338a830a29a484a91762464f11387658202af252fc850b772c003701cb842edf42a71d728584a42c3c7c1613c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBoB/bS:sxX7QnxrloE5dpUpHb

Malware Config

Targets

    • Target

      70df40d7e8b964b54d367d606864559ca3f3bcb118255c8a6fd41449aeb0e821

    • Size

      2.6MB

    • MD5

      828f7fc418260b41a1ec3fbac8769558

    • SHA1

      7b2e4b404c27ecec8ca475c5cd90c29fd1429c16

    • SHA256

      70df40d7e8b964b54d367d606864559ca3f3bcb118255c8a6fd41449aeb0e821

    • SHA512

      ab36f635ef55a79865fa6ec119c72cebf956ac9338a830a29a484a91762464f11387658202af252fc850b772c003701cb842edf42a71d728584a42c3c7c1613c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBoB/bS:sxX7QnxrloE5dpUpHb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks