General

  • Target

    5fd2bdb7c2d4975a47b8510de03d7f27747cac42b12f8b6aa8bddc3ea053362fN

  • Size

    2.6MB

  • Sample

    241111-3r4vfazclh

  • MD5

    9b6cb8b705d2674bfc0a4f49b1f9ef40

  • SHA1

    6ec160b9d48c8750479986bd554e12c2f6496b18

  • SHA256

    5fd2bdb7c2d4975a47b8510de03d7f27747cac42b12f8b6aa8bddc3ea053362f

  • SHA512

    ca96b576c1e7a5c1859957bb954047e585c8b36a0101bf1e2b2f9a12edcb894d8f6aa1dcfbd01445c9710b3d6f68e25b8d3c6acf55d887698626980e091ae9f8

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bS:sxX7QnxrloE5dpUpqb

Malware Config

Targets

    • Target

      5fd2bdb7c2d4975a47b8510de03d7f27747cac42b12f8b6aa8bddc3ea053362fN

    • Size

      2.6MB

    • MD5

      9b6cb8b705d2674bfc0a4f49b1f9ef40

    • SHA1

      6ec160b9d48c8750479986bd554e12c2f6496b18

    • SHA256

      5fd2bdb7c2d4975a47b8510de03d7f27747cac42b12f8b6aa8bddc3ea053362f

    • SHA512

      ca96b576c1e7a5c1859957bb954047e585c8b36a0101bf1e2b2f9a12edcb894d8f6aa1dcfbd01445c9710b3d6f68e25b8d3c6acf55d887698626980e091ae9f8

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bS:sxX7QnxrloE5dpUpqb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks