General

  • Target

    502e73572083eb6d5beedac081d94576f74e1ed136caedb38650d4723a64b531.exe

  • Size

    2.6MB

  • Sample

    241111-3vsatazdnp

  • MD5

    1a0c348c2ae52bc1aa20a40d1d9f39ba

  • SHA1

    0d5169fa9ee05743de5d9db0e15690f40dc6e3a1

  • SHA256

    502e73572083eb6d5beedac081d94576f74e1ed136caedb38650d4723a64b531

  • SHA512

    2edef69e1f8aee6c9e52418787b6978377770e3fb67943111b4e7391582b5565c7f64ef44b25ad18de28c98aaff4525dac2bca8b552c4b428895b7e0bcc9eaa3

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBuB/bSk:sxX7QnxrloE5dpUpxbH

Malware Config

Targets

    • Target

      502e73572083eb6d5beedac081d94576f74e1ed136caedb38650d4723a64b531.exe

    • Size

      2.6MB

    • MD5

      1a0c348c2ae52bc1aa20a40d1d9f39ba

    • SHA1

      0d5169fa9ee05743de5d9db0e15690f40dc6e3a1

    • SHA256

      502e73572083eb6d5beedac081d94576f74e1ed136caedb38650d4723a64b531

    • SHA512

      2edef69e1f8aee6c9e52418787b6978377770e3fb67943111b4e7391582b5565c7f64ef44b25ad18de28c98aaff4525dac2bca8b552c4b428895b7e0bcc9eaa3

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBuB/bSk:sxX7QnxrloE5dpUpxbH

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks