General

  • Target

    1965821cf9b85098a08bea466e508eb31d8a6f4e81f440176803ee45d2e44c2aN.exe

  • Size

    2.6MB

  • Sample

    241111-2hptgsyckb

  • MD5

    b44b4020323b5518ba79834f53ddb5f8

  • SHA1

    e1a91c919d7c88fb2d534d71d1c304b017c28945

  • SHA256

    699a563dcb014c0d37ff36fea87303beb3eba251ebe7aa1174fde1ee83867073

  • SHA512

    a62b791a79e3b4c7fdfda7f385324993e74954750927a6af2123720d09ae3f45dc7888ae0b0f0ee92fc7e3d3744bd6d8095d2c81cc4a0497085d92936ead2035

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bSP:sxX7QnxrloE5dpUp3bg

Malware Config

Targets

    • Target

      1965821cf9b85098a08bea466e508eb31d8a6f4e81f440176803ee45d2e44c2aN.exe

    • Size

      2.6MB

    • MD5

      b44b4020323b5518ba79834f53ddb5f8

    • SHA1

      e1a91c919d7c88fb2d534d71d1c304b017c28945

    • SHA256

      699a563dcb014c0d37ff36fea87303beb3eba251ebe7aa1174fde1ee83867073

    • SHA512

      a62b791a79e3b4c7fdfda7f385324993e74954750927a6af2123720d09ae3f45dc7888ae0b0f0ee92fc7e3d3744bd6d8095d2c81cc4a0497085d92936ead2035

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bSP:sxX7QnxrloE5dpUp3bg

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks