General

  • Target

    4147011a099687e4696d8d5ac17374273288abb1636fc9d26ed9883e5b01ebeaN

  • Size

    2.6MB

  • Sample

    241109-avsx5awlbp

  • MD5

    a6523c69f35dad79c14b948bd2ee1230

  • SHA1

    c5a36eba33ad2241150a0a48ee26ce0ee6751228

  • SHA256

    4147011a099687e4696d8d5ac17374273288abb1636fc9d26ed9883e5b01ebea

  • SHA512

    8c4298195d5f6d79cdd8114e6594a56fb72d388fc8ac795caa5fdc1b35585662e6b2fbd3c725eae45c3ce55d00ee22b96faf633dec17a7af99a6221fb629d473

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bS:sxX7QnxrloE5dpUpGb

Malware Config

Targets

    • Target

      4147011a099687e4696d8d5ac17374273288abb1636fc9d26ed9883e5b01ebeaN

    • Size

      2.6MB

    • MD5

      a6523c69f35dad79c14b948bd2ee1230

    • SHA1

      c5a36eba33ad2241150a0a48ee26ce0ee6751228

    • SHA256

      4147011a099687e4696d8d5ac17374273288abb1636fc9d26ed9883e5b01ebea

    • SHA512

      8c4298195d5f6d79cdd8114e6594a56fb72d388fc8ac795caa5fdc1b35585662e6b2fbd3c725eae45c3ce55d00ee22b96faf633dec17a7af99a6221fb629d473

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bS:sxX7QnxrloE5dpUpGb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks