General

  • Target

    adf05c1265952207aa4e49d7117ac8dbb1e6298283564cc3132dc87fc84d5335

  • Size

    2.6MB

  • Sample

    241110-b4ebrswlay

  • MD5

    d4a5cb207156f346c2cb2b2aa3bd6260

  • SHA1

    dc959d1342dd6048efcc3bad5a9289f9a913d695

  • SHA256

    adf05c1265952207aa4e49d7117ac8dbb1e6298283564cc3132dc87fc84d5335

  • SHA512

    766360b90bd0f15c6785f3b19a547b45d3e94028617396beb1f49da2220c78c95940630500568b57130ddef9f65c21f18632e44974eff8a958543ff2c2c09b1b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LByB/bSq:sxX7QnxrloE5dpUptbV

Malware Config

Targets

    • Target

      adf05c1265952207aa4e49d7117ac8dbb1e6298283564cc3132dc87fc84d5335

    • Size

      2.6MB

    • MD5

      d4a5cb207156f346c2cb2b2aa3bd6260

    • SHA1

      dc959d1342dd6048efcc3bad5a9289f9a913d695

    • SHA256

      adf05c1265952207aa4e49d7117ac8dbb1e6298283564cc3132dc87fc84d5335

    • SHA512

      766360b90bd0f15c6785f3b19a547b45d3e94028617396beb1f49da2220c78c95940630500568b57130ddef9f65c21f18632e44974eff8a958543ff2c2c09b1b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LByB/bSq:sxX7QnxrloE5dpUptbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks