General

  • Target

    4f867ccd737ebeda8c7b700d931cf0db65849265678b00fd0c03fc9a20f0c71f

  • Size

    2.6MB

  • Sample

    241111-184vnaxjgz

  • MD5

    4782b5d4cfda09dea3899bba50e1be5c

  • SHA1

    7c4d2b447cb19384bda47506e2b07411ccd9ca62

  • SHA256

    4f867ccd737ebeda8c7b700d931cf0db65849265678b00fd0c03fc9a20f0c71f

  • SHA512

    fa23adc5bfeed435a35b0c2798cf226c52f4e05ed12d77d08dda7f0328cbfdb17fffff8ef11bf2325ac0e7e023e0127bd386f397ec2b6ed0ad2595399267e6e4

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bS:sxX7QnxrloE5dpUpYb

Malware Config

Targets

    • Target

      4f867ccd737ebeda8c7b700d931cf0db65849265678b00fd0c03fc9a20f0c71f

    • Size

      2.6MB

    • MD5

      4782b5d4cfda09dea3899bba50e1be5c

    • SHA1

      7c4d2b447cb19384bda47506e2b07411ccd9ca62

    • SHA256

      4f867ccd737ebeda8c7b700d931cf0db65849265678b00fd0c03fc9a20f0c71f

    • SHA512

      fa23adc5bfeed435a35b0c2798cf226c52f4e05ed12d77d08dda7f0328cbfdb17fffff8ef11bf2325ac0e7e023e0127bd386f397ec2b6ed0ad2595399267e6e4

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBPB/bS:sxX7QnxrloE5dpUpYb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks