General

  • Target

    Setup.exe

  • Size

    10.9MB

  • Sample

    241110-a8hpbawbpq

  • MD5

    9f7f64fa5914915fc6f2d46ab88d0f61

  • SHA1

    ae67650dbf71a9cb841ccec2ecda6d9057cea7e2

  • SHA256

    0b9dc886c7f1879bf1b6609096b641f4250de7131e198e86a4318b219334101d

  • SHA512

    2fa3f78ba196f906cf202e2d105bd324294f2fadaca0b289123de4edb813c63fa67860bce7dcb0105c7b59b7a06e24abac3dc549de5699c1d912870c09915ae8

  • SSDEEP

    196608:ECym0N9UQL1GkOD+747CylL2060DMg51D7vhwg2qTcEf2sOYQImr:9U9H1GkOROiLNzMW1DF2AfzQJ

Malware Config

Targets

    • Target

      Setup.exe

    • Size

      10.9MB

    • MD5

      9f7f64fa5914915fc6f2d46ab88d0f61

    • SHA1

      ae67650dbf71a9cb841ccec2ecda6d9057cea7e2

    • SHA256

      0b9dc886c7f1879bf1b6609096b641f4250de7131e198e86a4318b219334101d

    • SHA512

      2fa3f78ba196f906cf202e2d105bd324294f2fadaca0b289123de4edb813c63fa67860bce7dcb0105c7b59b7a06e24abac3dc549de5699c1d912870c09915ae8

    • SSDEEP

      196608:ECym0N9UQL1GkOD+747CylL2060DMg51D7vhwg2qTcEf2sOYQImr:9U9H1GkOROiLNzMW1DF2AfzQJ

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks