General

  • Target

    401fa5052bfc6c35bf1b14e8475ce373f7965adfd96005584e2c5665c04da1fdN.exe

  • Size

    2.6MB

  • Sample

    241112-af35jszfrp

  • MD5

    e5dbe7eeb3143c13a86e8f000e637440

  • SHA1

    7a77758a9ee36379b5adfe8376aca6ae37994299

  • SHA256

    b42ff97f32d51d6d53da3c07121e35e2300a27336fd7bdc7d8be3fe40c1c990d

  • SHA512

    fa8465e40dc0f797ab8b58cef947b631e1e97669e04dae6baeddc58c33cfd546b8411abe47f63b2e40ca0942ae19fab6b5f88ad1493a8aa19c7413c01a679c0d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBGB/bS2:sxX7QnxrloE5dpUplbv

Malware Config

Targets

    • Target

      401fa5052bfc6c35bf1b14e8475ce373f7965adfd96005584e2c5665c04da1fdN.exe

    • Size

      2.6MB

    • MD5

      e5dbe7eeb3143c13a86e8f000e637440

    • SHA1

      7a77758a9ee36379b5adfe8376aca6ae37994299

    • SHA256

      b42ff97f32d51d6d53da3c07121e35e2300a27336fd7bdc7d8be3fe40c1c990d

    • SHA512

      fa8465e40dc0f797ab8b58cef947b631e1e97669e04dae6baeddc58c33cfd546b8411abe47f63b2e40ca0942ae19fab6b5f88ad1493a8aa19c7413c01a679c0d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBGB/bS2:sxX7QnxrloE5dpUplbv

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks