General

  • Target

    58ea5838c8ad8874a1b0ab4d1181375b41b73631e1aeecfa2738930181441b85

  • Size

    2.6MB

  • Sample

    241111-2kjp9ayclr

  • MD5

    88f8943cd4c2e387bd56af4913d568c0

  • SHA1

    b129589ff38e5ae2364fe82bd32d6912e1f0c59c

  • SHA256

    58ea5838c8ad8874a1b0ab4d1181375b41b73631e1aeecfa2738930181441b85

  • SHA512

    0feb3893238f5895e1c900be5d758b25e9af3447b1fffecdefab9d8bfdd3400ebf5a489c7f65b2c46f56a4c0b98fca26acb48a861828e62970266a6c602fa5be

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bS:sxX7QnxrloE5dpUpBb

Malware Config

Targets

    • Target

      58ea5838c8ad8874a1b0ab4d1181375b41b73631e1aeecfa2738930181441b85

    • Size

      2.6MB

    • MD5

      88f8943cd4c2e387bd56af4913d568c0

    • SHA1

      b129589ff38e5ae2364fe82bd32d6912e1f0c59c

    • SHA256

      58ea5838c8ad8874a1b0ab4d1181375b41b73631e1aeecfa2738930181441b85

    • SHA512

      0feb3893238f5895e1c900be5d758b25e9af3447b1fffecdefab9d8bfdd3400ebf5a489c7f65b2c46f56a4c0b98fca26acb48a861828e62970266a6c602fa5be

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bS:sxX7QnxrloE5dpUpBb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks