General

  • Target

    75d2b20efc1773d75b4a92b97da0bdaa63f58dd0864e07a9323bbf919cf70c99

  • Size

    4.1MB

  • Sample

    241111-3vqf8aymgv

  • MD5

    d18562bb7c291721560e023736dd033a

  • SHA1

    678fd42b0159c5c103688211c42f5d95e4bf8cbf

  • SHA256

    75d2b20efc1773d75b4a92b97da0bdaa63f58dd0864e07a9323bbf919cf70c99

  • SHA512

    d48b2aae1de109ec982841ed2e0834bc77341ef66baea68724b81e29870f2ac384071082e19bc02ad0e62e7d872a0cde2801cd811aaa2ec26156d07e0c3c22d5

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBMB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpPbVz8eLFcz

Malware Config

Targets

    • Target

      75d2b20efc1773d75b4a92b97da0bdaa63f58dd0864e07a9323bbf919cf70c99

    • Size

      4.1MB

    • MD5

      d18562bb7c291721560e023736dd033a

    • SHA1

      678fd42b0159c5c103688211c42f5d95e4bf8cbf

    • SHA256

      75d2b20efc1773d75b4a92b97da0bdaa63f58dd0864e07a9323bbf919cf70c99

    • SHA512

      d48b2aae1de109ec982841ed2e0834bc77341ef66baea68724b81e29870f2ac384071082e19bc02ad0e62e7d872a0cde2801cd811aaa2ec26156d07e0c3c22d5

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBMB/bSqz8b6LNXJqI20t:sxX7QnxrloE5dpUpPbVz8eLFcz

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks