General

  • Target

    1dde3105aa1b1193f3822adaa77c236d568321b4dbbf4e608f65c49429cbd75d

  • Size

    2.6MB

  • Sample

    241109-y3sjbs1gjg

  • MD5

    ee51b6662af14382569b01f66806e764

  • SHA1

    e739420385161be2c870772ef8140894ad4fb87b

  • SHA256

    1dde3105aa1b1193f3822adaa77c236d568321b4dbbf4e608f65c49429cbd75d

  • SHA512

    fc934ff6ecfc62df562c68e9c1a54ffa3ee7f207c0aa3d2ed7768a205de16ed8b6f60369abe5951f5814eca52f843c70e4f90b33b694c36150f52ac6fbd7f82e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBVB/bS:sxX7QnxrloE5dpUpeb

Malware Config

Targets

    • Target

      1dde3105aa1b1193f3822adaa77c236d568321b4dbbf4e608f65c49429cbd75d

    • Size

      2.6MB

    • MD5

      ee51b6662af14382569b01f66806e764

    • SHA1

      e739420385161be2c870772ef8140894ad4fb87b

    • SHA256

      1dde3105aa1b1193f3822adaa77c236d568321b4dbbf4e608f65c49429cbd75d

    • SHA512

      fc934ff6ecfc62df562c68e9c1a54ffa3ee7f207c0aa3d2ed7768a205de16ed8b6f60369abe5951f5814eca52f843c70e4f90b33b694c36150f52ac6fbd7f82e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBVB/bS:sxX7QnxrloE5dpUpeb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks