General

  • Target

    7ea7a363eb5f06741c2328932e29cafa01950bfd6aa906bf66c24b024a4ebf17

  • Size

    2.6MB

  • Sample

    241112-afh5dazfqq

  • MD5

    caec5baa89c4814fbbd0df9132559a8a

  • SHA1

    8e8b9e2b0f22a1a044a41c279fdba0796338a2d3

  • SHA256

    7ea7a363eb5f06741c2328932e29cafa01950bfd6aa906bf66c24b024a4ebf17

  • SHA512

    14e03db8396076bd10c3b0977e9a94e90bc8bd7edc8c09d0d79ab7bb7807c5890f353da7a4bb366c875baa411b1c624a4cad58940a683461f4ecb28dd7b6ab6e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBCB/bSq:sxX7QnxrloE5dpUpdbV

Malware Config

Targets

    • Target

      7ea7a363eb5f06741c2328932e29cafa01950bfd6aa906bf66c24b024a4ebf17

    • Size

      2.6MB

    • MD5

      caec5baa89c4814fbbd0df9132559a8a

    • SHA1

      8e8b9e2b0f22a1a044a41c279fdba0796338a2d3

    • SHA256

      7ea7a363eb5f06741c2328932e29cafa01950bfd6aa906bf66c24b024a4ebf17

    • SHA512

      14e03db8396076bd10c3b0977e9a94e90bc8bd7edc8c09d0d79ab7bb7807c5890f353da7a4bb366c875baa411b1c624a4cad58940a683461f4ecb28dd7b6ab6e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBCB/bSq:sxX7QnxrloE5dpUpdbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks