General

  • Target

    530bc3cebf6eb8bbcfb334d62bf4f814b286f3e12a08f47ce602b23babc3b48d

  • Size

    2.6MB

  • Sample

    241111-2dvtyaxkhx

  • MD5

    28c799ef849d78dbccbb25bdfb587f5c

  • SHA1

    c189a74c3b20313c92bc60502f33f9ae8b5c0da3

  • SHA256

    530bc3cebf6eb8bbcfb334d62bf4f814b286f3e12a08f47ce602b23babc3b48d

  • SHA512

    f5e2369e437740629b8ec4d42dcf37ff3853a7cd4fcee7f67c21d138d849b5b50044a1eddad215e4c463683164ad21bb3065f4eeb4e76820c6ed3718f69c9658

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bS:sxX7QnxrloE5dpUpXb

Malware Config

Targets

    • Target

      530bc3cebf6eb8bbcfb334d62bf4f814b286f3e12a08f47ce602b23babc3b48d

    • Size

      2.6MB

    • MD5

      28c799ef849d78dbccbb25bdfb587f5c

    • SHA1

      c189a74c3b20313c92bc60502f33f9ae8b5c0da3

    • SHA256

      530bc3cebf6eb8bbcfb334d62bf4f814b286f3e12a08f47ce602b23babc3b48d

    • SHA512

      f5e2369e437740629b8ec4d42dcf37ff3853a7cd4fcee7f67c21d138d849b5b50044a1eddad215e4c463683164ad21bb3065f4eeb4e76820c6ed3718f69c9658

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bS:sxX7QnxrloE5dpUpXb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks