General

  • Target

    d743505fdbe8dbf53cbac82caf3f97b24a7347fdd18dc919e08e070d3eb57aebN

  • Size

    2.6MB

  • Sample

    241111-31788azerm

  • MD5

    8b9c2dcf7ad3b18d9bef5a9db9857ec0

  • SHA1

    6bc7d290367e72a9b2e4743d7975d95ffeb5c8d0

  • SHA256

    d743505fdbe8dbf53cbac82caf3f97b24a7347fdd18dc919e08e070d3eb57aeb

  • SHA512

    cfb8aad4fb1f0579077f1206e636d0bbf2cdf3904897f5945ea7a70b3c121f1b3dba74c2ef4f9b71a4ff06bfdc8caa723d7bdf6c78a76929b310ae8432fac5f1

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB3B/bSq:sxX7QnxrloE5dpUpwbV

Malware Config

Targets

    • Target

      d743505fdbe8dbf53cbac82caf3f97b24a7347fdd18dc919e08e070d3eb57aebN

    • Size

      2.6MB

    • MD5

      8b9c2dcf7ad3b18d9bef5a9db9857ec0

    • SHA1

      6bc7d290367e72a9b2e4743d7975d95ffeb5c8d0

    • SHA256

      d743505fdbe8dbf53cbac82caf3f97b24a7347fdd18dc919e08e070d3eb57aeb

    • SHA512

      cfb8aad4fb1f0579077f1206e636d0bbf2cdf3904897f5945ea7a70b3c121f1b3dba74c2ef4f9b71a4ff06bfdc8caa723d7bdf6c78a76929b310ae8432fac5f1

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB3B/bSq:sxX7QnxrloE5dpUpwbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks