General

  • Target

    7ace87fde8da149c3cd796c5895af623936d3519ceb9828a1a075f2bf3ac2756

  • Size

    1.8MB

  • Sample

    241112-3twlvatcpj

  • MD5

    65bf23bf15d9e607b43f50f684d1f386

  • SHA1

    91773cacd33d7dd22d33bdc664083c48a0f619d3

  • SHA256

    7ace87fde8da149c3cd796c5895af623936d3519ceb9828a1a075f2bf3ac2756

  • SHA512

    e62edcd4c31ae80259c3812e5fc31255f8c7c345c7423998f146a1a70d18aab329efe93edf0c9099b03504164362e4bc16ddfd5ca97a7ed13cbbb3c7279dcf46

  • SSDEEP

    24576:e+gkE2fh4CoswMpxVl/ohNXrTUzOozUnxC8aewsAju:TgkEaSPArl/ohdTUzflju

Malware Config

Targets

    • Target

      7ace87fde8da149c3cd796c5895af623936d3519ceb9828a1a075f2bf3ac2756

    • Size

      1.8MB

    • MD5

      65bf23bf15d9e607b43f50f684d1f386

    • SHA1

      91773cacd33d7dd22d33bdc664083c48a0f619d3

    • SHA256

      7ace87fde8da149c3cd796c5895af623936d3519ceb9828a1a075f2bf3ac2756

    • SHA512

      e62edcd4c31ae80259c3812e5fc31255f8c7c345c7423998f146a1a70d18aab329efe93edf0c9099b03504164362e4bc16ddfd5ca97a7ed13cbbb3c7279dcf46

    • SSDEEP

      24576:e+gkE2fh4CoswMpxVl/ohNXrTUzOozUnxC8aewsAju:TgkEaSPArl/ohdTUzflju

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks