General

  • Target

    668577856b4b03c3dac5b5a56fc23d61fc70b2399848a8a97071bcf01f123d61N

  • Size

    2.6MB

  • Sample

    241110-b4st6azker

  • MD5

    94e10e447e2a27fbe826f53226aafc60

  • SHA1

    0cf3b90fbcad5eacf96fbb85ee2ea9b675918b8f

  • SHA256

    668577856b4b03c3dac5b5a56fc23d61fc70b2399848a8a97071bcf01f123d61

  • SHA512

    3f4b0a685bb2d64c49689406f7c140d9488c64b53f154e69667a738f8eff66e77c29b8f341c32e4052e38ae8ca9528ce4700e7abecc7ce8fc772b2e971681519

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bS:sxX7QnxrloE5dpUpYb

Malware Config

Targets

    • Target

      668577856b4b03c3dac5b5a56fc23d61fc70b2399848a8a97071bcf01f123d61N

    • Size

      2.6MB

    • MD5

      94e10e447e2a27fbe826f53226aafc60

    • SHA1

      0cf3b90fbcad5eacf96fbb85ee2ea9b675918b8f

    • SHA256

      668577856b4b03c3dac5b5a56fc23d61fc70b2399848a8a97071bcf01f123d61

    • SHA512

      3f4b0a685bb2d64c49689406f7c140d9488c64b53f154e69667a738f8eff66e77c29b8f341c32e4052e38ae8ca9528ce4700e7abecc7ce8fc772b2e971681519

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bS:sxX7QnxrloE5dpUpYb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks