General

  • Target

    7c4c35862544afd24e61c8914512f1c32c71d61383af68d5f89eb8645fcf635a

  • Size

    2.6MB

  • Sample

    241112-ab5gtazena

  • MD5

    f31b4ff61fdbcbf8e1a798907af60e83

  • SHA1

    a3daf69d0208012e1534b7c500c68c0cf0ee283a

  • SHA256

    7c4c35862544afd24e61c8914512f1c32c71d61383af68d5f89eb8645fcf635a

  • SHA512

    b6b20cad03f063cdc7c411f6f47fe8761c147dce225ba66dead37bab26caac4439a930fffc1ea975066bc1d64d86296751d03391c245f43cf1f1786b2910b6d2

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bS:sxX7QnxrloE5dpUpNb

Malware Config

Targets

    • Target

      7c4c35862544afd24e61c8914512f1c32c71d61383af68d5f89eb8645fcf635a

    • Size

      2.6MB

    • MD5

      f31b4ff61fdbcbf8e1a798907af60e83

    • SHA1

      a3daf69d0208012e1534b7c500c68c0cf0ee283a

    • SHA256

      7c4c35862544afd24e61c8914512f1c32c71d61383af68d5f89eb8645fcf635a

    • SHA512

      b6b20cad03f063cdc7c411f6f47fe8761c147dce225ba66dead37bab26caac4439a930fffc1ea975066bc1d64d86296751d03391c245f43cf1f1786b2910b6d2

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bS:sxX7QnxrloE5dpUpNb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks