General

  • Target

    2658c5b730bdb9f8457de257f71e8e8381817f737f15c50a2095e0cb2e7ce4eaN

  • Size

    2.6MB

  • Sample

    241112-afb13atjgm

  • MD5

    e68f99fa52d6a6b4a4dda59886fc66b0

  • SHA1

    d0055481cb48c005b151dc49fa8e0095b3fd2997

  • SHA256

    2658c5b730bdb9f8457de257f71e8e8381817f737f15c50a2095e0cb2e7ce4ea

  • SHA512

    7da89d17d244549cca7606e47c3852b3063cd97fc33f63ab184c3ff2552ce592bd7ac6d3fa8ab7c1b93e6a8c6b85261d80ef39fe6a8052e0bd7c0b7500da8207

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBVB/bS:sxX7QnxrloE5dpUpab

Malware Config

Targets

    • Target

      2658c5b730bdb9f8457de257f71e8e8381817f737f15c50a2095e0cb2e7ce4eaN

    • Size

      2.6MB

    • MD5

      e68f99fa52d6a6b4a4dda59886fc66b0

    • SHA1

      d0055481cb48c005b151dc49fa8e0095b3fd2997

    • SHA256

      2658c5b730bdb9f8457de257f71e8e8381817f737f15c50a2095e0cb2e7ce4ea

    • SHA512

      7da89d17d244549cca7606e47c3852b3063cd97fc33f63ab184c3ff2552ce592bd7ac6d3fa8ab7c1b93e6a8c6b85261d80ef39fe6a8052e0bd7c0b7500da8207

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBVB/bS:sxX7QnxrloE5dpUpab

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks