General

  • Target

    db4090f89cf97827ffdef3d2385981607d693bee0d298e60a725caa2cd2ba3afN

  • Size

    2.6MB

  • Sample

    241110-bny18svrbt

  • MD5

    6ccefb658f3adeaad1f1b5f6e31f2cd0

  • SHA1

    2d988b441f0cd62e221802d00b3c738e1db4bd56

  • SHA256

    db4090f89cf97827ffdef3d2385981607d693bee0d298e60a725caa2cd2ba3af

  • SHA512

    bdbc642c5f06660e4f837fbeba128d01730d749acd8cd8e1a9845ce2c641a597b926afd72a3e13d44f282c53d40c79906ab8d5da76d9fd0110d8d57007adb313

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bS:sxX7QnxrloE5dpUpEb

Malware Config

Targets

    • Target

      db4090f89cf97827ffdef3d2385981607d693bee0d298e60a725caa2cd2ba3afN

    • Size

      2.6MB

    • MD5

      6ccefb658f3adeaad1f1b5f6e31f2cd0

    • SHA1

      2d988b441f0cd62e221802d00b3c738e1db4bd56

    • SHA256

      db4090f89cf97827ffdef3d2385981607d693bee0d298e60a725caa2cd2ba3af

    • SHA512

      bdbc642c5f06660e4f837fbeba128d01730d749acd8cd8e1a9845ce2c641a597b926afd72a3e13d44f282c53d40c79906ab8d5da76d9fd0110d8d57007adb313

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bS:sxX7QnxrloE5dpUpEb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks