General

  • Target

    1bb0de5b3f66ca1e3154e0b684fd070ad7b5f85d1f5267e7f4840a01ba376b6bN

  • Size

    2.6MB

  • Sample

    241111-2etm9s1pdp

  • MD5

    2ee886138a7e1c97c92e730954e7cd60

  • SHA1

    e97a72af771ce3fcc900f6e1a499448706ca559b

  • SHA256

    1bb0de5b3f66ca1e3154e0b684fd070ad7b5f85d1f5267e7f4840a01ba376b6b

  • SHA512

    1124edcda12171f83eeb7ff9bbdc647ff466c76cd5b02b374006038b0198552f7f2277282a6e86e4549a1e259b81130e4c35bcc4461ff208174a49327fb93b66

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bS:sxX7QnxrloE5dpUpfb

Malware Config

Targets

    • Target

      1bb0de5b3f66ca1e3154e0b684fd070ad7b5f85d1f5267e7f4840a01ba376b6bN

    • Size

      2.6MB

    • MD5

      2ee886138a7e1c97c92e730954e7cd60

    • SHA1

      e97a72af771ce3fcc900f6e1a499448706ca559b

    • SHA256

      1bb0de5b3f66ca1e3154e0b684fd070ad7b5f85d1f5267e7f4840a01ba376b6b

    • SHA512

      1124edcda12171f83eeb7ff9bbdc647ff466c76cd5b02b374006038b0198552f7f2277282a6e86e4549a1e259b81130e4c35bcc4461ff208174a49327fb93b66

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bS:sxX7QnxrloE5dpUpfb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks