General

  • Target

    519a8b0d20e49494d52989b8f86b04a5ddb6caf174200419c982b3502492a30e

  • Size

    2.6MB

  • Sample

    241111-2bfl8sxkdw

  • MD5

    6f9068a86429863f710ec4fb981f655d

  • SHA1

    f4451225f2ad96cc053566b6c489927ba2f44e66

  • SHA256

    519a8b0d20e49494d52989b8f86b04a5ddb6caf174200419c982b3502492a30e

  • SHA512

    59bfdcf40968439f9385285fe5514b212a939aa2773ad5d3c133e0b232b2453d8d8664e885984c098d7caa77701df4081701709a1b08fbc242252657f0dca701

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUp4b

Malware Config

Targets

    • Target

      519a8b0d20e49494d52989b8f86b04a5ddb6caf174200419c982b3502492a30e

    • Size

      2.6MB

    • MD5

      6f9068a86429863f710ec4fb981f655d

    • SHA1

      f4451225f2ad96cc053566b6c489927ba2f44e66

    • SHA256

      519a8b0d20e49494d52989b8f86b04a5ddb6caf174200419c982b3502492a30e

    • SHA512

      59bfdcf40968439f9385285fe5514b212a939aa2773ad5d3c133e0b232b2453d8d8664e885984c098d7caa77701df4081701709a1b08fbc242252657f0dca701

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUp4b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks