General

  • Target

    62f0a3f16b6592381a8583ffd84b96edee6da2c8d1287f0bf5a5c58718742b80N

  • Size

    2.6MB

  • Sample

    241109-bllywstjav

  • MD5

    cd63dc13e7d2c0862a9a00f9965159e0

  • SHA1

    c3a20353bd745d06e3d988fd704e34d38fb26e60

  • SHA256

    62f0a3f16b6592381a8583ffd84b96edee6da2c8d1287f0bf5a5c58718742b80

  • SHA512

    8199f04169dd61e8897b8a93b31ec91d0ce48cc1bd528e255673d1af3214a62c3d9fcf5173daa82fd045e541c5937733896bd5f266ea9913cd68b57918bec31a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bS:sxX7QnxrloE5dpUpmb

Malware Config

Targets

    • Target

      62f0a3f16b6592381a8583ffd84b96edee6da2c8d1287f0bf5a5c58718742b80N

    • Size

      2.6MB

    • MD5

      cd63dc13e7d2c0862a9a00f9965159e0

    • SHA1

      c3a20353bd745d06e3d988fd704e34d38fb26e60

    • SHA256

      62f0a3f16b6592381a8583ffd84b96edee6da2c8d1287f0bf5a5c58718742b80

    • SHA512

      8199f04169dd61e8897b8a93b31ec91d0ce48cc1bd528e255673d1af3214a62c3d9fcf5173daa82fd045e541c5937733896bd5f266ea9913cd68b57918bec31a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bS:sxX7QnxrloE5dpUpmb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks