General

  • Target

    76cfd94986b68ccb70dec9304ec9e0b4535453b6b665c12c0595ea9ea0e385a4

  • Size

    2.6MB

  • Sample

    241111-3wkblaymh1

  • MD5

    d78a656c40ad3d078fc03ffca23f51b4

  • SHA1

    e9ac8ce32cea76e87a89c75e8e6d0025b8830e85

  • SHA256

    76cfd94986b68ccb70dec9304ec9e0b4535453b6b665c12c0595ea9ea0e385a4

  • SHA512

    cd3e60606e225f77d1a8c75a0e7e1e026a257a0dee7c890e483feaeba80d559760dfb1a19e55047390ad26a0ea28b71feec5af9330cfb871c1c80f2ef5c42b09

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpLb

Malware Config

Targets

    • Target

      76cfd94986b68ccb70dec9304ec9e0b4535453b6b665c12c0595ea9ea0e385a4

    • Size

      2.6MB

    • MD5

      d78a656c40ad3d078fc03ffca23f51b4

    • SHA1

      e9ac8ce32cea76e87a89c75e8e6d0025b8830e85

    • SHA256

      76cfd94986b68ccb70dec9304ec9e0b4535453b6b665c12c0595ea9ea0e385a4

    • SHA512

      cd3e60606e225f77d1a8c75a0e7e1e026a257a0dee7c890e483feaeba80d559760dfb1a19e55047390ad26a0ea28b71feec5af9330cfb871c1c80f2ef5c42b09

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpLb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks