General

  • Target

    4c6c82fa3a3105b01edfe1f1035234d17225d3539f1cb9dd341300dbf488bf85N.exe

  • Size

    2.6MB

  • Sample

    241111-3tbaxasqel

  • MD5

    28ed35abdab241da77796cc0d5204f0c

  • SHA1

    ea44fdc364a3a80c92bec306d5bf810318c1cabf

  • SHA256

    2de9c0915137b703554160799d482faccca4afcc142ab93513342cb86e2b4268

  • SHA512

    ea2b767bb0b3093815f0102a23f312b52488b6f6e36ffafd364ef3f9e485dbeb0decca526316cf80fe6b5d85181ae657911ab4b838f92a6e98f11675cfdcc360

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBjB/bSq7:sxX7QnxrloE5dpUp0bV7

Malware Config

Targets

    • Target

      4c6c82fa3a3105b01edfe1f1035234d17225d3539f1cb9dd341300dbf488bf85N.exe

    • Size

      2.6MB

    • MD5

      28ed35abdab241da77796cc0d5204f0c

    • SHA1

      ea44fdc364a3a80c92bec306d5bf810318c1cabf

    • SHA256

      2de9c0915137b703554160799d482faccca4afcc142ab93513342cb86e2b4268

    • SHA512

      ea2b767bb0b3093815f0102a23f312b52488b6f6e36ffafd364ef3f9e485dbeb0decca526316cf80fe6b5d85181ae657911ab4b838f92a6e98f11675cfdcc360

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBjB/bSq7:sxX7QnxrloE5dpUp0bV7

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks