General

  • Target

    1a8cc35490fa82ecaade713fb8e53771a33118bfdfe26524c002bd0f9bbf48ffN.exe

  • Size

    2.6MB

  • Sample

    241111-3ste4aymds

  • MD5

    c4c1219c454811bde69685c6d27a0f7b

  • SHA1

    5726f538607c777245d91a837916bdfef43d6821

  • SHA256

    1de8babc21308fb151f0b53c968ee660340e627312d3ca01a06a6324aeb8a493

  • SHA512

    6ffa27072b6d8cc4702d6c9079c6e4b3b8379085affe5d94ba6e1eafe792f7853d0bdba3f63711aac33ca28947752bfa1a2672c9dec71ebd41a57a4ccef15a8f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS8:sxX7QnxrloE5dpUpMb3

Malware Config

Targets

    • Target

      1a8cc35490fa82ecaade713fb8e53771a33118bfdfe26524c002bd0f9bbf48ffN.exe

    • Size

      2.6MB

    • MD5

      c4c1219c454811bde69685c6d27a0f7b

    • SHA1

      5726f538607c777245d91a837916bdfef43d6821

    • SHA256

      1de8babc21308fb151f0b53c968ee660340e627312d3ca01a06a6324aeb8a493

    • SHA512

      6ffa27072b6d8cc4702d6c9079c6e4b3b8379085affe5d94ba6e1eafe792f7853d0bdba3f63711aac33ca28947752bfa1a2672c9dec71ebd41a57a4ccef15a8f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS8:sxX7QnxrloE5dpUpMb3

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks