General

  • Target

    5854f5067da5eb564f9db9735f0fafa48954c41d6a8bb4cd3dd10ce0300c411a

  • Size

    2.6MB

  • Sample

    241111-2j2vfayclj

  • MD5

    bcb697f1f7a48325e07b11bdfca169f8

  • SHA1

    fa2d625cd4d8d856ae441d46a45f92766b7ba0e8

  • SHA256

    5854f5067da5eb564f9db9735f0fafa48954c41d6a8bb4cd3dd10ce0300c411a

  • SHA512

    ad86aed6b9a68057dbafe158497236d122e1fe2610cf2b9704ccfa679838980d1d2f104d4e0578b188975eda811b428783a34dc0166575c283798aafe260ebfa

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBGB/bSq:sxX7QnxrloE5dpUpRbV

Malware Config

Targets

    • Target

      5854f5067da5eb564f9db9735f0fafa48954c41d6a8bb4cd3dd10ce0300c411a

    • Size

      2.6MB

    • MD5

      bcb697f1f7a48325e07b11bdfca169f8

    • SHA1

      fa2d625cd4d8d856ae441d46a45f92766b7ba0e8

    • SHA256

      5854f5067da5eb564f9db9735f0fafa48954c41d6a8bb4cd3dd10ce0300c411a

    • SHA512

      ad86aed6b9a68057dbafe158497236d122e1fe2610cf2b9704ccfa679838980d1d2f104d4e0578b188975eda811b428783a34dc0166575c283798aafe260ebfa

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBGB/bSq:sxX7QnxrloE5dpUpRbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks