General

  • Target

    5be45cf1bd3a339b177ab84665923f00530581923f3615b7a07dc2c3074bcc89

  • Size

    2.6MB

  • Sample

    241111-2pkhcaydmk

  • MD5

    6751b18d96132ca8972287c1ff4267e5

  • SHA1

    487d8372e4d40311139fe8cba2b04487c17f9b42

  • SHA256

    5be45cf1bd3a339b177ab84665923f00530581923f3615b7a07dc2c3074bcc89

  • SHA512

    e282c29adbe718cfbfa8a17dbbddb2aa280e9bb40f2c87870ff54b210fb50c11198bb8f54282747b6bdc45d9875b6d55b7cb6ba06582c090b4927ab0ab42af8b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUp7b

Malware Config

Targets

    • Target

      5be45cf1bd3a339b177ab84665923f00530581923f3615b7a07dc2c3074bcc89

    • Size

      2.6MB

    • MD5

      6751b18d96132ca8972287c1ff4267e5

    • SHA1

      487d8372e4d40311139fe8cba2b04487c17f9b42

    • SHA256

      5be45cf1bd3a339b177ab84665923f00530581923f3615b7a07dc2c3074bcc89

    • SHA512

      e282c29adbe718cfbfa8a17dbbddb2aa280e9bb40f2c87870ff54b210fb50c11198bb8f54282747b6bdc45d9875b6d55b7cb6ba06582c090b4927ab0ab42af8b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUp7b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks