General

  • Target

    5bddbe26b12f8fe949f63c3c907637daba40ecafddc7e77efda3503cb5ed5e52

  • Size

    2.6MB

  • Sample

    241111-2pfjdsydlr

  • MD5

    7ea9cb53534a1e859d2a23fcaa878a04

  • SHA1

    19f323ff18af96f99329a1234457fb222cf35682

  • SHA256

    5bddbe26b12f8fe949f63c3c907637daba40ecafddc7e77efda3503cb5ed5e52

  • SHA512

    4a643f1cc1c1bdfdf76d09efa8240379ed3ea64a05bb68274349ffea7d0563761245e958c5354b2bcfd8b863be83bf3b76c470e485e201e0ee2f6ea4aebfec2a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBwB/bS:sxX7QnxrloE5dpUprb

Malware Config

Targets

    • Target

      5bddbe26b12f8fe949f63c3c907637daba40ecafddc7e77efda3503cb5ed5e52

    • Size

      2.6MB

    • MD5

      7ea9cb53534a1e859d2a23fcaa878a04

    • SHA1

      19f323ff18af96f99329a1234457fb222cf35682

    • SHA256

      5bddbe26b12f8fe949f63c3c907637daba40ecafddc7e77efda3503cb5ed5e52

    • SHA512

      4a643f1cc1c1bdfdf76d09efa8240379ed3ea64a05bb68274349ffea7d0563761245e958c5354b2bcfd8b863be83bf3b76c470e485e201e0ee2f6ea4aebfec2a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBwB/bS:sxX7QnxrloE5dpUprb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks