General

  • Target

    a1a00fe071f5c7f45d89ccd1df0520b620844fd9b8742c38dd5617cc05f11045N

  • Size

    2.6MB

  • Sample

    241111-2ltxlsycqb

  • MD5

    5adb9c3e02560eee066fa78c7cb03040

  • SHA1

    0a82de879e425dfa17ef195f1e433e891c2651d4

  • SHA256

    a1a00fe071f5c7f45d89ccd1df0520b620844fd9b8742c38dd5617cc05f11045

  • SHA512

    5f9dc1174e47c565f40724275c0529e26ab61a7d370f464dd8bffc424600370af7d938bc013320eb0f1e2b2b947dbc154f4f577989a74aea0a0cbdbc4d3bacd8

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB1B/bS:sxX7QnxrloE5dpUpOb

Malware Config

Targets

    • Target

      a1a00fe071f5c7f45d89ccd1df0520b620844fd9b8742c38dd5617cc05f11045N

    • Size

      2.6MB

    • MD5

      5adb9c3e02560eee066fa78c7cb03040

    • SHA1

      0a82de879e425dfa17ef195f1e433e891c2651d4

    • SHA256

      a1a00fe071f5c7f45d89ccd1df0520b620844fd9b8742c38dd5617cc05f11045

    • SHA512

      5f9dc1174e47c565f40724275c0529e26ab61a7d370f464dd8bffc424600370af7d938bc013320eb0f1e2b2b947dbc154f4f577989a74aea0a0cbdbc4d3bacd8

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB1B/bS:sxX7QnxrloE5dpUpOb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks