General

  • Target

    2401b8621cd5fb0d1a318fb00207887b187ab895ea2b96ae09055ddd6dde0197

  • Size

    2.6MB

  • Sample

    241109-za6e6a1hnk

  • MD5

    b4795a573930f03b0f16cccfab9b5759

  • SHA1

    cf5dfc4700640322d46e6e5e75d2666f61e07871

  • SHA256

    2401b8621cd5fb0d1a318fb00207887b187ab895ea2b96ae09055ddd6dde0197

  • SHA512

    b42d7c80dd9920f129874b7b9135978357e36593a1b98730885206cbe566a60bc00e813c3a433a66107fb4f3bf1c06bd3c2e852a96c57e7fcca3ff468b4a3034

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bS:sxX7QnxrloE5dpUpbb

Malware Config

Targets

    • Target

      2401b8621cd5fb0d1a318fb00207887b187ab895ea2b96ae09055ddd6dde0197

    • Size

      2.6MB

    • MD5

      b4795a573930f03b0f16cccfab9b5759

    • SHA1

      cf5dfc4700640322d46e6e5e75d2666f61e07871

    • SHA256

      2401b8621cd5fb0d1a318fb00207887b187ab895ea2b96ae09055ddd6dde0197

    • SHA512

      b42d7c80dd9920f129874b7b9135978357e36593a1b98730885206cbe566a60bc00e813c3a433a66107fb4f3bf1c06bd3c2e852a96c57e7fcca3ff468b4a3034

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bS:sxX7QnxrloE5dpUpbb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks