General

  • Target

    eb7b26536252ecad05ed4a340f855918f7e1270789f4840386e7bde5f540f270N

  • Size

    2.6MB

  • Sample

    241109-yv79ta1ekr

  • MD5

    e2cfd84e724ebfc68f6c69380df75720

  • SHA1

    77d3148cb0854f8b3bce399be7f4fa10a56b1793

  • SHA256

    eb7b26536252ecad05ed4a340f855918f7e1270789f4840386e7bde5f540f270

  • SHA512

    be6194b0b8e55cf6bb61dde1911e19c5b5a18fce24105819d616161e51233dad5d1a5652af5305c02b24148356bd1a861fe02e7b47262652cdbf9bdfec0746b2

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBeB/bSq:sxX7QnxrloE5dpUphbV

Malware Config

Targets

    • Target

      eb7b26536252ecad05ed4a340f855918f7e1270789f4840386e7bde5f540f270N

    • Size

      2.6MB

    • MD5

      e2cfd84e724ebfc68f6c69380df75720

    • SHA1

      77d3148cb0854f8b3bce399be7f4fa10a56b1793

    • SHA256

      eb7b26536252ecad05ed4a340f855918f7e1270789f4840386e7bde5f540f270

    • SHA512

      be6194b0b8e55cf6bb61dde1911e19c5b5a18fce24105819d616161e51233dad5d1a5652af5305c02b24148356bd1a861fe02e7b47262652cdbf9bdfec0746b2

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBeB/bSq:sxX7QnxrloE5dpUphbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks