General

  • Target

    591f0c10e4ee4af3598977b4040c6db664ec983752bd33160c47bf777278e8ebN.exe

  • Size

    2.6MB

  • Sample

    241112-ad25gaypfy

  • MD5

    a3e3be7630e1b7bdd766e61e293cf79e

  • SHA1

    4463152279d30687dc4cd058a192b0d1e03fab3e

  • SHA256

    4bdd846b3d33943932958f3d244fb8fce6c583100430e2abe3198e0bf87067b6

  • SHA512

    0f3ad2dd2b89ff511efacc518c33e4b70497f8bfb4e03ad83c355f7de8251f7e69387b2cdecfb600ff67923f6e75a5a559e04ad0c746b3646efcc2a733f3de78

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bSN:sxX7QnxrloE5dpUpfb+

Malware Config

Targets

    • Target

      591f0c10e4ee4af3598977b4040c6db664ec983752bd33160c47bf777278e8ebN.exe

    • Size

      2.6MB

    • MD5

      a3e3be7630e1b7bdd766e61e293cf79e

    • SHA1

      4463152279d30687dc4cd058a192b0d1e03fab3e

    • SHA256

      4bdd846b3d33943932958f3d244fb8fce6c583100430e2abe3198e0bf87067b6

    • SHA512

      0f3ad2dd2b89ff511efacc518c33e4b70497f8bfb4e03ad83c355f7de8251f7e69387b2cdecfb600ff67923f6e75a5a559e04ad0c746b3646efcc2a733f3de78

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bSN:sxX7QnxrloE5dpUpfb+

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks