General

  • Target

    aab8d479d496de2df937f9a674b3433bc67fee48071bc17b9e3c386d0b222604

  • Size

    2.6MB

  • Sample

    241110-bx4cbazjbq

  • MD5

    c4b8be834cd157487d2c9998e3873ab1

  • SHA1

    b78390c942dfd10e8846a8bdbe076b56946b3dde

  • SHA256

    aab8d479d496de2df937f9a674b3433bc67fee48071bc17b9e3c386d0b222604

  • SHA512

    07e1bdf043e73f4024551d2bf4c5f2effb2deb9bb45c1fef236cb0f395b93790b6533ab563859677f51bf5ddd976f9c1c45da01edf63cd0129b8c2e2e94298f6

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpBb

Malware Config

Targets

    • Target

      aab8d479d496de2df937f9a674b3433bc67fee48071bc17b9e3c386d0b222604

    • Size

      2.6MB

    • MD5

      c4b8be834cd157487d2c9998e3873ab1

    • SHA1

      b78390c942dfd10e8846a8bdbe076b56946b3dde

    • SHA256

      aab8d479d496de2df937f9a674b3433bc67fee48071bc17b9e3c386d0b222604

    • SHA512

      07e1bdf043e73f4024551d2bf4c5f2effb2deb9bb45c1fef236cb0f395b93790b6533ab563859677f51bf5ddd976f9c1c45da01edf63cd0129b8c2e2e94298f6

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpBb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks