General

  • Target

    cf5d4f59357914c6f059cbbfd1c9352453de60ea95eb0c867e9cdb2ca1948fccN

  • Size

    2.6MB

  • Sample

    241111-2f9e4s1pfl

  • MD5

    24926616038eb2de9acb29bb14850ec0

  • SHA1

    12ac0e094b689b45a3957a44b95274e30e9a309a

  • SHA256

    cf5d4f59357914c6f059cbbfd1c9352453de60ea95eb0c867e9cdb2ca1948fcc

  • SHA512

    5ecf930b58d36974653e35af24a9970dcf252b355491680f3be46ec4283d5db96b0f513a040939617de09f1a509b9ee89a1e2bc50adb09ca353d4b1979992e2e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpUb

Malware Config

Targets

    • Target

      cf5d4f59357914c6f059cbbfd1c9352453de60ea95eb0c867e9cdb2ca1948fccN

    • Size

      2.6MB

    • MD5

      24926616038eb2de9acb29bb14850ec0

    • SHA1

      12ac0e094b689b45a3957a44b95274e30e9a309a

    • SHA256

      cf5d4f59357914c6f059cbbfd1c9352453de60ea95eb0c867e9cdb2ca1948fcc

    • SHA512

      5ecf930b58d36974653e35af24a9970dcf252b355491680f3be46ec4283d5db96b0f513a040939617de09f1a509b9ee89a1e2bc50adb09ca353d4b1979992e2e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB/B/bS:sxX7QnxrloE5dpUpUb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks