General

  • Target

    a187972e5f020ec9adafb48ae4c8e3a9b89b5b9c58719a2b672d7708812fd3f9

  • Size

    2.9MB

  • Sample

    241110-bjb1xavqcx

  • MD5

    d5489ad6da90b7f1252501677a6adb57

  • SHA1

    ba3717e08769e7387c03220dc73a1e6b847d383c

  • SHA256

    a187972e5f020ec9adafb48ae4c8e3a9b89b5b9c58719a2b672d7708812fd3f9

  • SHA512

    b01114f96d11ae23fbe97edf72c05e024d2f27e3a935df3dd0a1129ac31e6f6914982fbc4575206eb9ae244c32d599662d88a11074febe94a9febe77222ddb41

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBtB/bSqz8:sxX7QnxrloE5dpUpObVz8

Malware Config

Targets

    • Target

      a187972e5f020ec9adafb48ae4c8e3a9b89b5b9c58719a2b672d7708812fd3f9

    • Size

      2.9MB

    • MD5

      d5489ad6da90b7f1252501677a6adb57

    • SHA1

      ba3717e08769e7387c03220dc73a1e6b847d383c

    • SHA256

      a187972e5f020ec9adafb48ae4c8e3a9b89b5b9c58719a2b672d7708812fd3f9

    • SHA512

      b01114f96d11ae23fbe97edf72c05e024d2f27e3a935df3dd0a1129ac31e6f6914982fbc4575206eb9ae244c32d599662d88a11074febe94a9febe77222ddb41

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBtB/bSqz8:sxX7QnxrloE5dpUpObVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks