General

  • Target

    010549c877a7e3e7624575d5eba260ac8126853aad02251e66ead1930c8b3111N.exe

  • Size

    2.6MB

  • Sample

    241111-311t5szejf

  • MD5

    b2cb16e2a4087729c857705e9131eae4

  • SHA1

    06a7b95e3f7732dcf928c3e0cae4dd1759b5da88

  • SHA256

    cc7a8fc5bf02def3007e27a4e3f17cfb2641fdbacc2e17093c711c6122215556

  • SHA512

    3b2b85b4150f6f58851b285c985f135b8f2ef72b35188ce3f017ea3aacdee9be14a6e29620b3ec1cce56c136ca2256b4297349d1e68dd08e33a56893b4523e14

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBfB/bSv:sxX7QnxrloE5dpUpwbC

Malware Config

Targets

    • Target

      010549c877a7e3e7624575d5eba260ac8126853aad02251e66ead1930c8b3111N.exe

    • Size

      2.6MB

    • MD5

      b2cb16e2a4087729c857705e9131eae4

    • SHA1

      06a7b95e3f7732dcf928c3e0cae4dd1759b5da88

    • SHA256

      cc7a8fc5bf02def3007e27a4e3f17cfb2641fdbacc2e17093c711c6122215556

    • SHA512

      3b2b85b4150f6f58851b285c985f135b8f2ef72b35188ce3f017ea3aacdee9be14a6e29620b3ec1cce56c136ca2256b4297349d1e68dd08e33a56893b4523e14

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBfB/bSv:sxX7QnxrloE5dpUpwbC

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks