General

  • Target

    75c9304de617faaa87ab1fa1acc9a8198c8d633bc46774ff6e8283c1e4c63468N

  • Size

    2.6MB

  • Sample

    241109-aafgassjft

  • MD5

    a3596b0537ebd98b9da4548ee290f590

  • SHA1

    1e66d8cc4d99eafdae32f3544389cffda2bb2071

  • SHA256

    75c9304de617faaa87ab1fa1acc9a8198c8d633bc46774ff6e8283c1e4c63468

  • SHA512

    712dad09e851fcc2e52c75989182f2d5c5a74f65278b50bdc7c34f3c8bb53052ba8c1cdbc049d81e08e9205f98e5c00ab4b11444a982297aae3ab4dd4d0c8b66

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBvB/bSq:sxX7QnxrloE5dpUpYbV

Malware Config

Targets

    • Target

      75c9304de617faaa87ab1fa1acc9a8198c8d633bc46774ff6e8283c1e4c63468N

    • Size

      2.6MB

    • MD5

      a3596b0537ebd98b9da4548ee290f590

    • SHA1

      1e66d8cc4d99eafdae32f3544389cffda2bb2071

    • SHA256

      75c9304de617faaa87ab1fa1acc9a8198c8d633bc46774ff6e8283c1e4c63468

    • SHA512

      712dad09e851fcc2e52c75989182f2d5c5a74f65278b50bdc7c34f3c8bb53052ba8c1cdbc049d81e08e9205f98e5c00ab4b11444a982297aae3ab4dd4d0c8b66

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBvB/bSq:sxX7QnxrloE5dpUpYbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks