General

  • Target

    7e2f34fe34db3fbb84d7f33617b4440290ba492e9a3b795c0eeb161c8f8abbd4

  • Size

    2.6MB

  • Sample

    241112-aeq4lazfjb

  • MD5

    e156bc748682116b56fa0390fabb2999

  • SHA1

    c62653ea4cd921500d33e7b2e89ccece95804293

  • SHA256

    7e2f34fe34db3fbb84d7f33617b4440290ba492e9a3b795c0eeb161c8f8abbd4

  • SHA512

    3ca5e644bb9f6bae2d2ecba00c89d88d44ea6dedba12675f98f12423b5a45a88fb9ba915aae0fc503527fd943b4afe67cd4ba8d957887da52a500c23cc0d7634

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBMB/bSq:sxX7QnxrloE5dpUpPbV

Malware Config

Targets

    • Target

      7e2f34fe34db3fbb84d7f33617b4440290ba492e9a3b795c0eeb161c8f8abbd4

    • Size

      2.6MB

    • MD5

      e156bc748682116b56fa0390fabb2999

    • SHA1

      c62653ea4cd921500d33e7b2e89ccece95804293

    • SHA256

      7e2f34fe34db3fbb84d7f33617b4440290ba492e9a3b795c0eeb161c8f8abbd4

    • SHA512

      3ca5e644bb9f6bae2d2ecba00c89d88d44ea6dedba12675f98f12423b5a45a88fb9ba915aae0fc503527fd943b4afe67cd4ba8d957887da52a500c23cc0d7634

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBMB/bSq:sxX7QnxrloE5dpUpPbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks