General

  • Target

    430c45c9fbbc700aa2c231a415c243e186c82b46ff669a341c712476a268fd70

  • Size

    398KB

  • Sample

    241109-y2ek3szrcx

  • MD5

    94d4a22188c1e55ea2151d40407204bc

  • SHA1

    27146037d47ba8d226a9bd846b32e772f8e673e7

  • SHA256

    430c45c9fbbc700aa2c231a415c243e186c82b46ff669a341c712476a268fd70

  • SHA512

    735ed48b0395d30c3149ec16c2bb41ec896afd09f8f3b522dc998f0e9f62fe1517094cee44f52bc3eb8d57682331d99d89387f429a322360368fcf9e588dc061

  • SSDEEP

    6144:M46tGdyr6KnDXYQ/BWJjmpgtBZQZKQj8p3jyb7HREd4SZ1tzLbF:M3N2KDXYJmSTZwYp32bY4qtDF

Malware Config

Targets

    • Target

      430c45c9fbbc700aa2c231a415c243e186c82b46ff669a341c712476a268fd70

    • Size

      398KB

    • MD5

      94d4a22188c1e55ea2151d40407204bc

    • SHA1

      27146037d47ba8d226a9bd846b32e772f8e673e7

    • SHA256

      430c45c9fbbc700aa2c231a415c243e186c82b46ff669a341c712476a268fd70

    • SHA512

      735ed48b0395d30c3149ec16c2bb41ec896afd09f8f3b522dc998f0e9f62fe1517094cee44f52bc3eb8d57682331d99d89387f429a322360368fcf9e588dc061

    • SSDEEP

      6144:M46tGdyr6KnDXYQ/BWJjmpgtBZQZKQj8p3jyb7HREd4SZ1tzLbF:M3N2KDXYJmSTZwYp32bY4qtDF

    • Drops file in Drivers directory

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks