General

  • Target

    2dd6737260c0c352b19d2441c822b9f0c0713e86a05e683e5968091dfab0d6b4N

  • Size

    1.0MB

  • Sample

    241109-dfcjdavng1

  • MD5

    8fdc46c5b1369a2e6a98c26d6842c170

  • SHA1

    b8540956f5dc8a0697c9a1e9629f24d471052290

  • SHA256

    2dd6737260c0c352b19d2441c822b9f0c0713e86a05e683e5968091dfab0d6b4

  • SHA512

    fc7130365b9744d4e0de4cebf0c8cdc73eff5ab3e31f30e882d19f42e833212450625ed4f24b85723f0abd9c92dcb951ff09dd59045a00b0e191f8f91efe8479

  • SSDEEP

    24576:4LizX6HOUEokzpL9qT/nlnBOa7PIUghkuhX9/:4LQUEp9qTH7PIlhk+B

Malware Config

Targets

    • Target

      2dd6737260c0c352b19d2441c822b9f0c0713e86a05e683e5968091dfab0d6b4N

    • Size

      1.0MB

    • MD5

      8fdc46c5b1369a2e6a98c26d6842c170

    • SHA1

      b8540956f5dc8a0697c9a1e9629f24d471052290

    • SHA256

      2dd6737260c0c352b19d2441c822b9f0c0713e86a05e683e5968091dfab0d6b4

    • SHA512

      fc7130365b9744d4e0de4cebf0c8cdc73eff5ab3e31f30e882d19f42e833212450625ed4f24b85723f0abd9c92dcb951ff09dd59045a00b0e191f8f91efe8479

    • SSDEEP

      24576:4LizX6HOUEokzpL9qT/nlnBOa7PIUghkuhX9/:4LQUEp9qTH7PIlhk+B

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks