General

  • Target

    b220a8b8f5077ba483909b94dda87bbd3f394ad285245a7ad4be37ab5a50f535N.exe

  • Size

    44KB

  • Sample

    241112-j2s15sydle

  • MD5

    772391bea450af5f2108638ab8788563

  • SHA1

    be1d14eeb92fe6ebc5dd9036c1510d6279452381

  • SHA256

    1192019bb428761476da488df7dce0cfb99d6305895ef2c0a551c68c09d3c270

  • SHA512

    86fe12e882e46227b6e5a7992879ba2e44ff68f032f7f7b3b6b4c0f1d991bd3871151c6b1fe36111c8a48cc9712533c0d3af8783948d1c1b444ef2cc188cfd8c

  • SSDEEP

    768:5VeVAUd2IRqg+nnzatCN99za8Xaner+7Ex9zNp:Pe+lwqNzatCxza8qnexjz7

Malware Config

Targets

    • Target

      b220a8b8f5077ba483909b94dda87bbd3f394ad285245a7ad4be37ab5a50f535N.exe

    • Size

      44KB

    • MD5

      772391bea450af5f2108638ab8788563

    • SHA1

      be1d14eeb92fe6ebc5dd9036c1510d6279452381

    • SHA256

      1192019bb428761476da488df7dce0cfb99d6305895ef2c0a551c68c09d3c270

    • SHA512

      86fe12e882e46227b6e5a7992879ba2e44ff68f032f7f7b3b6b4c0f1d991bd3871151c6b1fe36111c8a48cc9712533c0d3af8783948d1c1b444ef2cc188cfd8c

    • SSDEEP

      768:5VeVAUd2IRqg+nnzatCN99za8Xaner+7Ex9zNp:Pe+lwqNzatCxza8qnexjz7

    • Renames multiple (253) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks