General

  • Target

    02d55737418c24777149b318b010e02c3aad51a6265032faeeaa7510ef3a894b

  • Size

    2.6MB

  • Sample

    241109-xvd6aszgkd

  • MD5

    23de7a98aa0f0a16a1bbaaee9d780746

  • SHA1

    cf6f7b4ec509f23a09d1e8c6d72e6d1200108093

  • SHA256

    02d55737418c24777149b318b010e02c3aad51a6265032faeeaa7510ef3a894b

  • SHA512

    d239e1c1f1fb17ff7555b6ccb870f0443cb3ec49eb3cc6fe8dc9147a330df820ff3978e600a030a18dc646947cd50741330f6fb0812f553c24b434216f21ff14

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bS:sxX7QnxrloE5dpUpib

Malware Config

Targets

    • Target

      02d55737418c24777149b318b010e02c3aad51a6265032faeeaa7510ef3a894b

    • Size

      2.6MB

    • MD5

      23de7a98aa0f0a16a1bbaaee9d780746

    • SHA1

      cf6f7b4ec509f23a09d1e8c6d72e6d1200108093

    • SHA256

      02d55737418c24777149b318b010e02c3aad51a6265032faeeaa7510ef3a894b

    • SHA512

      d239e1c1f1fb17ff7555b6ccb870f0443cb3ec49eb3cc6fe8dc9147a330df820ff3978e600a030a18dc646947cd50741330f6fb0812f553c24b434216f21ff14

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bS:sxX7QnxrloE5dpUpib

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks