General

  • Target

    267d49cd7876c6633880fa6cee11e98e836a968a0eb9a15b60823e01a3b355abN

  • Size

    2.6MB

  • Sample

    241109-aptx8stbkl

  • MD5

    2399a4a90a4f50e1d00f461263eae1e0

  • SHA1

    c3ff0487fd4ac8139d69e2875a22ffbfaa8b442e

  • SHA256

    267d49cd7876c6633880fa6cee11e98e836a968a0eb9a15b60823e01a3b355ab

  • SHA512

    c4cd835db83208c5b513b08a640f769e3bddd6b7a4a5f05da5da2b7c604ebbacadb9d0f7bb34ddd21ee3aee55740c03fe39904f4da0c1242e801fe5d4eaa70d2

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bS:sxX7QnxrloE5dpUp2b

Malware Config

Targets

    • Target

      267d49cd7876c6633880fa6cee11e98e836a968a0eb9a15b60823e01a3b355abN

    • Size

      2.6MB

    • MD5

      2399a4a90a4f50e1d00f461263eae1e0

    • SHA1

      c3ff0487fd4ac8139d69e2875a22ffbfaa8b442e

    • SHA256

      267d49cd7876c6633880fa6cee11e98e836a968a0eb9a15b60823e01a3b355ab

    • SHA512

      c4cd835db83208c5b513b08a640f769e3bddd6b7a4a5f05da5da2b7c604ebbacadb9d0f7bb34ddd21ee3aee55740c03fe39904f4da0c1242e801fe5d4eaa70d2

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBhB/bS:sxX7QnxrloE5dpUp2b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks