General

  • Target

    1dcd76dbfd93fbce5836061e6116674d1d22c236900470cc0e6f7d97d546c8a9.exe

  • Size

    2.6MB

  • Sample

    241112-afsntatjhk

  • MD5

    c2318e2a253d5fe2ab48d3a528e4c300

  • SHA1

    0cf56d37c14a147ac269eea120b08579f7604f52

  • SHA256

    1dcd76dbfd93fbce5836061e6116674d1d22c236900470cc0e6f7d97d546c8a9

  • SHA512

    077877637625ea73b01b3e2613e205b9e94c8ad6d2b80e21cc9510766c25378bfb9914d4df251c7fa03fb88665a5534ea931191c7514ac7f44214c1bb314373b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bSq+:sxX7QnxrloE5dpUpNbV+

Malware Config

Targets

    • Target

      1dcd76dbfd93fbce5836061e6116674d1d22c236900470cc0e6f7d97d546c8a9.exe

    • Size

      2.6MB

    • MD5

      c2318e2a253d5fe2ab48d3a528e4c300

    • SHA1

      0cf56d37c14a147ac269eea120b08579f7604f52

    • SHA256

      1dcd76dbfd93fbce5836061e6116674d1d22c236900470cc0e6f7d97d546c8a9

    • SHA512

      077877637625ea73b01b3e2613e205b9e94c8ad6d2b80e21cc9510766c25378bfb9914d4df251c7fa03fb88665a5534ea931191c7514ac7f44214c1bb314373b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB6B/bSq+:sxX7QnxrloE5dpUpNbV+

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks