General

  • Target

    1cb4224c524447bf801b2b19e23f48f9ad083bbbc9f89c24d418e213f99b6dccN

  • Size

    211KB

  • Sample

    241109-aayymssjfy

  • MD5

    cba407a414f71048711865525583a320

  • SHA1

    6722724f204ef6bd9a3937e04c4b2ab8a644d8b1

  • SHA256

    1cb4224c524447bf801b2b19e23f48f9ad083bbbc9f89c24d418e213f99b6dcc

  • SHA512

    1f00e7a3a33bdafb71dc0d74f9b646b555b6b733da47f5978061118c48f382023d0b9014217651bca07d7fa2112f038a1c16960c60f3283a3b292cf347a62fcc

  • SSDEEP

    3072:EPUHpiKT2t2UHIu05W7SAFJJOUD9cckiKop97f3r8n9t9YgntnH:9rTfUHeeSKOS9ccFKk3Y9t9YyH

Malware Config

Targets

    • Target

      1cb4224c524447bf801b2b19e23f48f9ad083bbbc9f89c24d418e213f99b6dccN

    • Size

      211KB

    • MD5

      cba407a414f71048711865525583a320

    • SHA1

      6722724f204ef6bd9a3937e04c4b2ab8a644d8b1

    • SHA256

      1cb4224c524447bf801b2b19e23f48f9ad083bbbc9f89c24d418e213f99b6dcc

    • SHA512

      1f00e7a3a33bdafb71dc0d74f9b646b555b6b733da47f5978061118c48f382023d0b9014217651bca07d7fa2112f038a1c16960c60f3283a3b292cf347a62fcc

    • SSDEEP

      3072:EPUHpiKT2t2UHIu05W7SAFJJOUD9cckiKop97f3r8n9t9YgntnH:9rTfUHeeSKOS9ccFKk3Y9t9YyH

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks