General

  • Target

    a6e3d544dbaf0dd0e661fb4fd8933311ad4be7f083576aeae2f7b8612d385e2e

  • Size

    2.6MB

  • Sample

    241110-bsbfqswglb

  • MD5

    8d41899d5dd4e4b1873f162c4e30b93e

  • SHA1

    0acf4024db74f6f973448b2f8776af9080dcaccd

  • SHA256

    a6e3d544dbaf0dd0e661fb4fd8933311ad4be7f083576aeae2f7b8612d385e2e

  • SHA512

    07c7de6f176c277917f75d949402dc96c9554fecc881dd67e99d7edf95daa0c9f6cb2c8a355ec818db442c62bc2c44fbc6c66c5134e7e665e4a0476c52469dd5

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBAB/bS:sxX7QnxrloE5dpUpPb

Malware Config

Targets

    • Target

      a6e3d544dbaf0dd0e661fb4fd8933311ad4be7f083576aeae2f7b8612d385e2e

    • Size

      2.6MB

    • MD5

      8d41899d5dd4e4b1873f162c4e30b93e

    • SHA1

      0acf4024db74f6f973448b2f8776af9080dcaccd

    • SHA256

      a6e3d544dbaf0dd0e661fb4fd8933311ad4be7f083576aeae2f7b8612d385e2e

    • SHA512

      07c7de6f176c277917f75d949402dc96c9554fecc881dd67e99d7edf95daa0c9f6cb2c8a355ec818db442c62bc2c44fbc6c66c5134e7e665e4a0476c52469dd5

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBAB/bS:sxX7QnxrloE5dpUpPb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks