General

  • Target

    7d919e658aa5377c85681fed85f85a8776adf1c344a98502bbd3f2a2d4144bbd

  • Size

    2.6MB

  • Sample

    241112-adrzhazfnl

  • MD5

    588080afc07b730cb8c004f4a6e82ab3

  • SHA1

    8ac83c9e1428ec9f3d6cdf247d16dae3c72c1873

  • SHA256

    7d919e658aa5377c85681fed85f85a8776adf1c344a98502bbd3f2a2d4144bbd

  • SHA512

    5fb6a12f6e6e6e68d5deb3e3bdf2c8fc486762624139005648e92d49d6340f27f98cf871e17861c67df86c6b4c33c4dc44cd2f730759d519b2d33f8928f22c63

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bSq:sxX7QnxrloE5dpUp9bV

Malware Config

Targets

    • Target

      7d919e658aa5377c85681fed85f85a8776adf1c344a98502bbd3f2a2d4144bbd

    • Size

      2.6MB

    • MD5

      588080afc07b730cb8c004f4a6e82ab3

    • SHA1

      8ac83c9e1428ec9f3d6cdf247d16dae3c72c1873

    • SHA256

      7d919e658aa5377c85681fed85f85a8776adf1c344a98502bbd3f2a2d4144bbd

    • SHA512

      5fb6a12f6e6e6e68d5deb3e3bdf2c8fc486762624139005648e92d49d6340f27f98cf871e17861c67df86c6b4c33c4dc44cd2f730759d519b2d33f8928f22c63

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBOB/bSq:sxX7QnxrloE5dpUp9bV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks