General

  • Target

    74537b0528ce6c8892e73a92fd4c92bcbb16afae1267b75e655899d104da587e

  • Size

    563KB

  • Sample

    241109-acdqgssgkc

  • MD5

    86bb6b739bb4d22e1810d41cbfe6a29e

  • SHA1

    6b9bd695ad29d47ccf580982561586c3a4856ddf

  • SHA256

    74537b0528ce6c8892e73a92fd4c92bcbb16afae1267b75e655899d104da587e

  • SHA512

    cc78b82d7a7f5c1bc7168262276ea0a419dba339b47e34ebc60bec87298d993b84f982f41104ed86fa0a030783c06aaf953fb768498b410974aa78090f14e165

  • SSDEEP

    12288:V3N2rc9iJafmm2VYK+UNo0RweQfoAxHv9sN4A4H9J618UtQ43iUa:V3N2hVm2VZQwy9E1Vf3M

Malware Config

Targets

    • Target

      74537b0528ce6c8892e73a92fd4c92bcbb16afae1267b75e655899d104da587e

    • Size

      563KB

    • MD5

      86bb6b739bb4d22e1810d41cbfe6a29e

    • SHA1

      6b9bd695ad29d47ccf580982561586c3a4856ddf

    • SHA256

      74537b0528ce6c8892e73a92fd4c92bcbb16afae1267b75e655899d104da587e

    • SHA512

      cc78b82d7a7f5c1bc7168262276ea0a419dba339b47e34ebc60bec87298d993b84f982f41104ed86fa0a030783c06aaf953fb768498b410974aa78090f14e165

    • SSDEEP

      12288:V3N2rc9iJafmm2VYK+UNo0RweQfoAxHv9sN4A4H9J618UtQ43iUa:V3N2hVm2VZQwy9E1Vf3M

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks