General

  • Target

    79e01ef1672b59908065e62015afaf2dca4b5b348a38b1eca1679e0e5c03f2cbN

  • Size

    2.6MB

  • Sample

    241109-db3vrswcjd

  • MD5

    3c94769036f74a4bbcffea19d0949010

  • SHA1

    a5af387fd6e3501bcf49f79fcabcc6ab2c33e5c8

  • SHA256

    79e01ef1672b59908065e62015afaf2dca4b5b348a38b1eca1679e0e5c03f2cb

  • SHA512

    cc07cf7d977dc43fa484ad53dfd3cc23e6481ad2a6b63334ea9e1eed91f9ab05870ab5328942144bb0091700d507b8086e913f3b2fcdb27a14555e67254351f1

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bS:sxX7QnxrloE5dpUpJb

Malware Config

Targets

    • Target

      79e01ef1672b59908065e62015afaf2dca4b5b348a38b1eca1679e0e5c03f2cbN

    • Size

      2.6MB

    • MD5

      3c94769036f74a4bbcffea19d0949010

    • SHA1

      a5af387fd6e3501bcf49f79fcabcc6ab2c33e5c8

    • SHA256

      79e01ef1672b59908065e62015afaf2dca4b5b348a38b1eca1679e0e5c03f2cb

    • SHA512

      cc07cf7d977dc43fa484ad53dfd3cc23e6481ad2a6b63334ea9e1eed91f9ab05870ab5328942144bb0091700d507b8086e913f3b2fcdb27a14555e67254351f1

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bS:sxX7QnxrloE5dpUpJb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks