General

  • Target

    MDE_File_Sample_40a8f1c4f9645120a31a4c1fd468c150d281c44f.zip

  • Size

    4.3MB

  • Sample

    241111-p5jvjazdkh

  • MD5

    656b8f718312d05310fe61d6148bcc41

  • SHA1

    a6e616320b494c838ede7f087e420b3924b018dc

  • SHA256

    10ae2fa5c66068ac2c5b81277f65a0895d6cf7a7f187409010bb8c386e90769e

  • SHA512

    61a1f78e73a757c3966e8ec8a7285f1a9c6ec35eab7b4e6d32c920df6086b191354343a13453c1519e0d28f685b1ca65bf34d6f7a0072e5c5929c055077df066

  • SSDEEP

    98304:TmwfOQoXPhAPxkpyYrZKAys8ZT3sG2iIkOK2M+I6P:TmsQXSPSpyYULyK23P

Malware Config

Targets

    • Target

      ziprar (1).exe

    • Size

      6.7MB

    • MD5

      e7a3d727e15edc55f3082c77db10cb33

    • SHA1

      40a8f1c4f9645120a31a4c1fd468c150d281c44f

    • SHA256

      c071e0b67e4c105c87b876183900f97a4e8bc1a7c18e61c028dee59ce690b1ac

    • SHA512

      7d35b49542965e6a9cf9068d5f7d8b686f0518ed12cb89acccd23dfbe5d0c2a3fc596455527d57a0af2ad67464830d7a2753f3c977e74b88fcf1ad938b05d03b

    • SSDEEP

      98304:I45UEXPwQmPCOiMEto9cHP9dkuHz9M6lP:b5UEXmIWaP9d9P

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks