General

  • Target

    b99ea151a686f8c2d05b560e1648bdcdd25ba12a9bd7a93474ba6bf660ffb925.exe

  • Size

    2.6MB

  • Sample

    241111-2rnyjsxnb1

  • MD5

    80784e3554efaa9a9e1ca57e4a6b2c59

  • SHA1

    7c69be2440bc2bec0b6903f46047f421acef1257

  • SHA256

    b99ea151a686f8c2d05b560e1648bdcdd25ba12a9bd7a93474ba6bf660ffb925

  • SHA512

    b7f44e3230dab353de7033e197d9c1a9e867452f5034c6f2ba00242f72fb056944336d1de68e1208ffe2a9ae04646e78ac340f617721aae1d58f258ffb31acbc

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bSY:sxX7QnxrloE5dpUpNbL

Malware Config

Targets

    • Target

      b99ea151a686f8c2d05b560e1648bdcdd25ba12a9bd7a93474ba6bf660ffb925.exe

    • Size

      2.6MB

    • MD5

      80784e3554efaa9a9e1ca57e4a6b2c59

    • SHA1

      7c69be2440bc2bec0b6903f46047f421acef1257

    • SHA256

      b99ea151a686f8c2d05b560e1648bdcdd25ba12a9bd7a93474ba6bf660ffb925

    • SHA512

      b7f44e3230dab353de7033e197d9c1a9e867452f5034c6f2ba00242f72fb056944336d1de68e1208ffe2a9ae04646e78ac340f617721aae1d58f258ffb31acbc

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bSY:sxX7QnxrloE5dpUpNbL

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks