General

  • Target

    7a7a1603ca6b7aeaaf219bf33a661b1b1ab9e4667305bfb591e819cb6575c25cN.exe

  • Size

    45KB

  • Sample

    241111-18jjqaxjfw

  • MD5

    781a265e65bae555727e3ddbd96f937d

  • SHA1

    68d64b13d4f7e5a96b1a0ad604146761b62c9785

  • SHA256

    5aa6e923c7e5cca97a0f0b849fbc48d3105c294300def6f77b8cad262121b764

  • SHA512

    f21fbbcc2537a1bd334eb84236232b5d81470100a06c3833c00f52521ad33022e1611b824bb7fbf4be2181daddc380d65e5fc56f107b78664e8793eb26522a4d

  • SSDEEP

    768:xvY4CDhL26MpT8eMsfkLiRiHbqpscfyvFTLK54RdhWeWWRf:RYpt6pT8kf4HU6rhWeWef

Malware Config

Targets

    • Target

      7a7a1603ca6b7aeaaf219bf33a661b1b1ab9e4667305bfb591e819cb6575c25cN.exe

    • Size

      45KB

    • MD5

      781a265e65bae555727e3ddbd96f937d

    • SHA1

      68d64b13d4f7e5a96b1a0ad604146761b62c9785

    • SHA256

      5aa6e923c7e5cca97a0f0b849fbc48d3105c294300def6f77b8cad262121b764

    • SHA512

      f21fbbcc2537a1bd334eb84236232b5d81470100a06c3833c00f52521ad33022e1611b824bb7fbf4be2181daddc380d65e5fc56f107b78664e8793eb26522a4d

    • SSDEEP

      768:xvY4CDhL26MpT8eMsfkLiRiHbqpscfyvFTLK54RdhWeWWRf:RYpt6pT8kf4HU6rhWeWef

    • Modifies Windows Firewall

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Network Share Discovery

      Attempt to gather information on host network.

    • Password Policy Discovery

      Attempt to access detailed information about the password policy used within an enterprise network.

    • Enumerates processes with tasklist

MITRE ATT&CK Enterprise v15

Tasks