General

  • Target

    621cf104301ea189e4832be227b172e79cff00dd6fdbb2cc74f76ba597272e3fN

  • Size

    2.6MB

  • Sample

    241109-xvkm3szjey

  • MD5

    d5654d70c4e1cd8e46a42ed1abeb2a80

  • SHA1

    1d1647f5cd14fa2d50b1711533a2c5bbe0a942ef

  • SHA256

    621cf104301ea189e4832be227b172e79cff00dd6fdbb2cc74f76ba597272e3f

  • SHA512

    70d87461a11c02919681581037754dc23a2580fe3bb738f1fa81d8fd4968cd2137c529ab9c0157e6bbdfbbe3df9919ab112dffd9a166b11cdac64b67d22a96e0

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bS:sxX7QnxrloE5dpUpJb

Malware Config

Targets

    • Target

      621cf104301ea189e4832be227b172e79cff00dd6fdbb2cc74f76ba597272e3fN

    • Size

      2.6MB

    • MD5

      d5654d70c4e1cd8e46a42ed1abeb2a80

    • SHA1

      1d1647f5cd14fa2d50b1711533a2c5bbe0a942ef

    • SHA256

      621cf104301ea189e4832be227b172e79cff00dd6fdbb2cc74f76ba597272e3f

    • SHA512

      70d87461a11c02919681581037754dc23a2580fe3bb738f1fa81d8fd4968cd2137c529ab9c0157e6bbdfbbe3df9919ab112dffd9a166b11cdac64b67d22a96e0

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bS:sxX7QnxrloE5dpUpJb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks