General

  • Target

    36ce398f58634c9b5106f94238bc3dcefad5f5d8cc3cb782386cdb6e6c4aa9daN

  • Size

    2.6MB

  • Sample

    241109-bldyaatgje

  • MD5

    5b24002ba6463d3d5de66aace31c9c30

  • SHA1

    f43ab9fc4f5318cf428dc061b1d05163b1526cc6

  • SHA256

    36ce398f58634c9b5106f94238bc3dcefad5f5d8cc3cb782386cdb6e6c4aa9da

  • SHA512

    89bca9050ca1c89083cd449be48275fdb130d6b68ce3682cf1e1319162930040cb1b499c1767b3dafa2a0fa5ef22d25a2d8e5fcea5d765324f0f3a2c90d8051f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBAB/bS:sxX7QnxrloE5dpUpzb

Malware Config

Targets

    • Target

      36ce398f58634c9b5106f94238bc3dcefad5f5d8cc3cb782386cdb6e6c4aa9daN

    • Size

      2.6MB

    • MD5

      5b24002ba6463d3d5de66aace31c9c30

    • SHA1

      f43ab9fc4f5318cf428dc061b1d05163b1526cc6

    • SHA256

      36ce398f58634c9b5106f94238bc3dcefad5f5d8cc3cb782386cdb6e6c4aa9da

    • SHA512

      89bca9050ca1c89083cd449be48275fdb130d6b68ce3682cf1e1319162930040cb1b499c1767b3dafa2a0fa5ef22d25a2d8e5fcea5d765324f0f3a2c90d8051f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBAB/bS:sxX7QnxrloE5dpUpzb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks