General

  • Target

    7a6f2b5f13e0890f1a33a8a523b85cc659e110451d75af30ab067470507040db

  • Size

    2.6MB

  • Sample

    241111-3zwtsszenp

  • MD5

    1ac69b53ed067c51cb3c33225142a743

  • SHA1

    ea469a1a22878afa079df134cefdcae964fb5e4f

  • SHA256

    7a6f2b5f13e0890f1a33a8a523b85cc659e110451d75af30ab067470507040db

  • SHA512

    f5cc9127945ee4cc30e2c5d385fd15deb2fb7ab7371a9518f38323795eaa40caffacd0ecb01f8fd96c8d3af09aac2a60a427eb0d3be5fd494ae24b31a1863bb2

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bS:sxX7QnxrloE5dpUppb

Malware Config

Targets

    • Target

      7a6f2b5f13e0890f1a33a8a523b85cc659e110451d75af30ab067470507040db

    • Size

      2.6MB

    • MD5

      1ac69b53ed067c51cb3c33225142a743

    • SHA1

      ea469a1a22878afa079df134cefdcae964fb5e4f

    • SHA256

      7a6f2b5f13e0890f1a33a8a523b85cc659e110451d75af30ab067470507040db

    • SHA512

      f5cc9127945ee4cc30e2c5d385fd15deb2fb7ab7371a9518f38323795eaa40caffacd0ecb01f8fd96c8d3af09aac2a60a427eb0d3be5fd494ae24b31a1863bb2

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bS:sxX7QnxrloE5dpUppb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks