General

  • Target

    5a55e73a0de19c634efde886f20652c1520e39cb51b20c51271c804eb0eb67e6

  • Size

    2.6MB

  • Sample

    241111-2ml86a1qfq

  • MD5

    1bfd87ca0273f37842c8a9e8de21ecec

  • SHA1

    981bad57945fe8ea625638e9f6c0b046dfe40b3a

  • SHA256

    5a55e73a0de19c634efde886f20652c1520e39cb51b20c51271c804eb0eb67e6

  • SHA512

    2fe374d3f547f7b08767cbc824cb6eaf3762267bb349ad5a9939305cbda78568b4e112dd56f31483029d92f50cbdfd2a14de0d026479ec178a9c10ce2b9ca704

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBSB/bS:sxX7QnxrloE5dpUpJb

Malware Config

Targets

    • Target

      5a55e73a0de19c634efde886f20652c1520e39cb51b20c51271c804eb0eb67e6

    • Size

      2.6MB

    • MD5

      1bfd87ca0273f37842c8a9e8de21ecec

    • SHA1

      981bad57945fe8ea625638e9f6c0b046dfe40b3a

    • SHA256

      5a55e73a0de19c634efde886f20652c1520e39cb51b20c51271c804eb0eb67e6

    • SHA512

      2fe374d3f547f7b08767cbc824cb6eaf3762267bb349ad5a9939305cbda78568b4e112dd56f31483029d92f50cbdfd2a14de0d026479ec178a9c10ce2b9ca704

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBSB/bS:sxX7QnxrloE5dpUpJb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks