General

  • Target

    2d5ebd2a5900f5a2829e1f88f1f341920af70e6f643c652d1b216b23bea826e2

  • Size

    2.6MB

  • Sample

    241109-zprkjssclk

  • MD5

    ad2c34d1bb91ea11ba6dc84e85229a8e

  • SHA1

    1cdd5930aab7038df84efbae183d87ca14d5d951

  • SHA256

    2d5ebd2a5900f5a2829e1f88f1f341920af70e6f643c652d1b216b23bea826e2

  • SHA512

    d76b08961d06ebbecdea437250f459bfafa6abdbea76df32081bf9b6e71bdacfc96928b4ad2e1a8da2949ecaf519e40c62b95d0ee187a0906b09ae0b92706ae4

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBIB/bS:sxX7QnxrloE5dpUpjb

Malware Config

Targets

    • Target

      2d5ebd2a5900f5a2829e1f88f1f341920af70e6f643c652d1b216b23bea826e2

    • Size

      2.6MB

    • MD5

      ad2c34d1bb91ea11ba6dc84e85229a8e

    • SHA1

      1cdd5930aab7038df84efbae183d87ca14d5d951

    • SHA256

      2d5ebd2a5900f5a2829e1f88f1f341920af70e6f643c652d1b216b23bea826e2

    • SHA512

      d76b08961d06ebbecdea437250f459bfafa6abdbea76df32081bf9b6e71bdacfc96928b4ad2e1a8da2949ecaf519e40c62b95d0ee187a0906b09ae0b92706ae4

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBIB/bS:sxX7QnxrloE5dpUpjb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks