General

  • Target

    4ee3a55750e5fbcab8d2313f80cd0575c96c6174e96938336c206531bcd68b85

  • Size

    2.6MB

  • Sample

    241111-17mjzs1nan

  • MD5

    812679dbee6288345ee6a612998ace60

  • SHA1

    85ab0a175d6b7c6ef0d21f99ba0f0c43e6145996

  • SHA256

    4ee3a55750e5fbcab8d2313f80cd0575c96c6174e96938336c206531bcd68b85

  • SHA512

    7254e1b94678b94c06c12c8f45137c842eadc945b4fd12685083aa2d6c82ec132d6d06bbb829c8abd6528b7b4fe07435e1c938f1edf9896ae4ef388ec4d1fa37

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpvb

Malware Config

Targets

    • Target

      4ee3a55750e5fbcab8d2313f80cd0575c96c6174e96938336c206531bcd68b85

    • Size

      2.6MB

    • MD5

      812679dbee6288345ee6a612998ace60

    • SHA1

      85ab0a175d6b7c6ef0d21f99ba0f0c43e6145996

    • SHA256

      4ee3a55750e5fbcab8d2313f80cd0575c96c6174e96938336c206531bcd68b85

    • SHA512

      7254e1b94678b94c06c12c8f45137c842eadc945b4fd12685083aa2d6c82ec132d6d06bbb829c8abd6528b7b4fe07435e1c938f1edf9896ae4ef388ec4d1fa37

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpvb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks