General

  • Target

    b40afaf42790c694e84246da104d1096563a8a6a9fac594be7e072562a2af13c

  • Size

    1.3MB

  • Sample

    241109-nj8fbstdnd

  • MD5

    2078dc7bef249af9b83025bc5c457aaf

  • SHA1

    85aabfc43de7d32ddd4a42389b1a85d6404c9a00

  • SHA256

    b40afaf42790c694e84246da104d1096563a8a6a9fac594be7e072562a2af13c

  • SHA512

    be6ef913a32fb4720f79f302b7e4e278f414c24006e5110255604085dac0aa863f26d4d2c7ca04a8437d959d4e4979cd173088bc4570b280b4e0713a0f29d6b6

  • SSDEEP

    24576:vIXgCWSpRy4dSJVDsVu5unzqWvX1dNyBo4kx929bL3Hnx:uWSjLSJlsQuzqW/1aB+kn3Hnx

Malware Config

Targets

    • Target

      b40afaf42790c694e84246da104d1096563a8a6a9fac594be7e072562a2af13c

    • Size

      1.3MB

    • MD5

      2078dc7bef249af9b83025bc5c457aaf

    • SHA1

      85aabfc43de7d32ddd4a42389b1a85d6404c9a00

    • SHA256

      b40afaf42790c694e84246da104d1096563a8a6a9fac594be7e072562a2af13c

    • SHA512

      be6ef913a32fb4720f79f302b7e4e278f414c24006e5110255604085dac0aa863f26d4d2c7ca04a8437d959d4e4979cd173088bc4570b280b4e0713a0f29d6b6

    • SSDEEP

      24576:vIXgCWSpRy4dSJVDsVu5unzqWvX1dNyBo4kx929bL3Hnx:uWSjLSJlsQuzqW/1aB+kn3Hnx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks