General

  • Target

    77ea161f37059f70edd87af8ca8b1b8b23e0137a878a5ed88062d5b6a696184f

  • Size

    2.6MB

  • Sample

    241111-3w971szdlg

  • MD5

    d394eb1b15ff3e37d6d47236b0765c9e

  • SHA1

    50ff26212f5a3393fcf1fde9849c8f476df0baa7

  • SHA256

    77ea161f37059f70edd87af8ca8b1b8b23e0137a878a5ed88062d5b6a696184f

  • SHA512

    305ca42fcf16ef5f299cb4dd79775767fd8c08e86fc1d412b88df4f5438d52015ed8c96004f92e870b2e788503610a74204ae3622ddd29f228bc7320bf38b9ba

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpFb

Malware Config

Targets

    • Target

      77ea161f37059f70edd87af8ca8b1b8b23e0137a878a5ed88062d5b6a696184f

    • Size

      2.6MB

    • MD5

      d394eb1b15ff3e37d6d47236b0765c9e

    • SHA1

      50ff26212f5a3393fcf1fde9849c8f476df0baa7

    • SHA256

      77ea161f37059f70edd87af8ca8b1b8b23e0137a878a5ed88062d5b6a696184f

    • SHA512

      305ca42fcf16ef5f299cb4dd79775767fd8c08e86fc1d412b88df4f5438d52015ed8c96004f92e870b2e788503610a74204ae3622ddd29f228bc7320bf38b9ba

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpFb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks