General

  • Target

    055c2929ec3dc5c16fcbb29460a5d9df47af9f28e1e39316b763e6628f6c9312N.exe

  • Size

    2.6MB

  • Sample

    241111-3wv34azdkh

  • MD5

    eb960148447cebb164905d10c37f3389

  • SHA1

    bcb41520884a2d2996f5e1d81695ad82d727d57c

  • SHA256

    1cc6716cc3f113a1adb4bb6e4074e2f6d7688b6f6f0f39b8e138996f5ed7e2b0

  • SHA512

    f419144262452948e6ec80b6b7247cc919fde9b1bd78ee80513b991eccd48d80cff5bdea19f3d3dab17fd3b59ae9a54ffd312153c201a7b4405786b1d7db56b8

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBMB/bSq:sxX7QnxrloE5dpUpvb3

Malware Config

Targets

    • Target

      055c2929ec3dc5c16fcbb29460a5d9df47af9f28e1e39316b763e6628f6c9312N.exe

    • Size

      2.6MB

    • MD5

      eb960148447cebb164905d10c37f3389

    • SHA1

      bcb41520884a2d2996f5e1d81695ad82d727d57c

    • SHA256

      1cc6716cc3f113a1adb4bb6e4074e2f6d7688b6f6f0f39b8e138996f5ed7e2b0

    • SHA512

      f419144262452948e6ec80b6b7247cc919fde9b1bd78ee80513b991eccd48d80cff5bdea19f3d3dab17fd3b59ae9a54ffd312153c201a7b4405786b1d7db56b8

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBMB/bSq:sxX7QnxrloE5dpUpvb3

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks