General

  • Target

    40ecd485b208bf625ac987f88c4d9fc31f98db829010e21ac05a8db6f2995b47N

  • Size

    2.6MB

  • Sample

    241109-bhjdlasrdz

  • MD5

    b5e55e020a3df4833f4bfa0d1f1f8c00

  • SHA1

    64d12e76e846ddc8ddf0aaeb052e0460ae37549a

  • SHA256

    40ecd485b208bf625ac987f88c4d9fc31f98db829010e21ac05a8db6f2995b47

  • SHA512

    e22ae85a978dc1c120b566be4a29eb912ab16b83ca67d85f19c0d480acc9000745c868770d1eccf5c22cfaad93bbe3e5d0bfe98768c46656cb5ecf735297dbac

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bS:sxX7QnxrloE5dpUpxb

Malware Config

Targets

    • Target

      40ecd485b208bf625ac987f88c4d9fc31f98db829010e21ac05a8db6f2995b47N

    • Size

      2.6MB

    • MD5

      b5e55e020a3df4833f4bfa0d1f1f8c00

    • SHA1

      64d12e76e846ddc8ddf0aaeb052e0460ae37549a

    • SHA256

      40ecd485b208bf625ac987f88c4d9fc31f98db829010e21ac05a8db6f2995b47

    • SHA512

      e22ae85a978dc1c120b566be4a29eb912ab16b83ca67d85f19c0d480acc9000745c868770d1eccf5c22cfaad93bbe3e5d0bfe98768c46656cb5ecf735297dbac

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBqB/bS:sxX7QnxrloE5dpUpxb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks