General

  • Target

    7ef3bfa45d8ca7e3fbaf0e3e7f5cd2489692307f6c22de2ed15a811433493ad1N

  • Size

    2.6MB

  • Sample

    241109-bl2pcatgkd

  • MD5

    80f2a4457efb67478827536c409c5810

  • SHA1

    6b7e631e3bcab41f8ca0835f62a4d1298bc3a7de

  • SHA256

    7ef3bfa45d8ca7e3fbaf0e3e7f5cd2489692307f6c22de2ed15a811433493ad1

  • SHA512

    ee0ef4e8fc6f0881f1a83145135b61082c319a5a0b4bb30eed3fa917bf9256f9f8592d630e2af3ccca0bdebb7e3a40c757fd48af7a2913160b70622c8e482843

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBnB/bS:sxX7QnxrloE5dpUpIb

Malware Config

Targets

    • Target

      7ef3bfa45d8ca7e3fbaf0e3e7f5cd2489692307f6c22de2ed15a811433493ad1N

    • Size

      2.6MB

    • MD5

      80f2a4457efb67478827536c409c5810

    • SHA1

      6b7e631e3bcab41f8ca0835f62a4d1298bc3a7de

    • SHA256

      7ef3bfa45d8ca7e3fbaf0e3e7f5cd2489692307f6c22de2ed15a811433493ad1

    • SHA512

      ee0ef4e8fc6f0881f1a83145135b61082c319a5a0b4bb30eed3fa917bf9256f9f8592d630e2af3ccca0bdebb7e3a40c757fd48af7a2913160b70622c8e482843

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBnB/bS:sxX7QnxrloE5dpUpIb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks