General

  • Target

    b3714b03170153e976104173050927750f501487b5b841a50a13865a5a722d9cN

  • Size

    2.6MB

  • Sample

    241109-k2zz5a1hpj

  • MD5

    4d7d3dd48a9e24535f965270dd5f3280

  • SHA1

    b787a321b7d75c7fbb4bdc405928a68cc0aef2dd

  • SHA256

    b3714b03170153e976104173050927750f501487b5b841a50a13865a5a722d9c

  • SHA512

    00888313276bd9552e2e1e040632b0a44a55e6f25a1150d563f7868e0295f4bb6e806bd9f026c94550850de521e48dd692848ca72cbd9c4f55d291c177131692

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBwB/bSq:sxX7QnxrloE5dpUp/bV

Malware Config

Targets

    • Target

      b3714b03170153e976104173050927750f501487b5b841a50a13865a5a722d9cN

    • Size

      2.6MB

    • MD5

      4d7d3dd48a9e24535f965270dd5f3280

    • SHA1

      b787a321b7d75c7fbb4bdc405928a68cc0aef2dd

    • SHA256

      b3714b03170153e976104173050927750f501487b5b841a50a13865a5a722d9c

    • SHA512

      00888313276bd9552e2e1e040632b0a44a55e6f25a1150d563f7868e0295f4bb6e806bd9f026c94550850de521e48dd692848ca72cbd9c4f55d291c177131692

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBwB/bSq:sxX7QnxrloE5dpUp/bV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks