General

  • Target

    01d4ff4a58d07fb5427c638e2e0059e9206faf56355c9611915deb3fd7661cda

  • Size

    92KB

  • Sample

    241112-r7rz2avelr

  • MD5

    500432d44c0ea242ef60583423d89bc9

  • SHA1

    a9d2f65900b9a47a8f436eb9a422f913085ce30c

  • SHA256

    01d4ff4a58d07fb5427c638e2e0059e9206faf56355c9611915deb3fd7661cda

  • SHA512

    8765531c32c17c7a8a8747cdb5be981f85c3aa088df601dd97b2c2f6f778a3043e1a9512cf0fb036ffa594e2cccc3ff41932ac260306c7bb805302a70465dd09

  • SSDEEP

    1536:IBuse+Zk77RNzLiTO7yapmebn4ddJZeY86iLflLJYEIs67rxo:IBuse+aX3zv2LK4ddJMY86ipmns6S

Malware Config

Targets

    • Target

      01d4ff4a58d07fb5427c638e2e0059e9206faf56355c9611915deb3fd7661cda

    • Size

      92KB

    • MD5

      500432d44c0ea242ef60583423d89bc9

    • SHA1

      a9d2f65900b9a47a8f436eb9a422f913085ce30c

    • SHA256

      01d4ff4a58d07fb5427c638e2e0059e9206faf56355c9611915deb3fd7661cda

    • SHA512

      8765531c32c17c7a8a8747cdb5be981f85c3aa088df601dd97b2c2f6f778a3043e1a9512cf0fb036ffa594e2cccc3ff41932ac260306c7bb805302a70465dd09

    • SSDEEP

      1536:IBuse+Zk77RNzLiTO7yapmebn4ddJZeY86iLflLJYEIs67rxo:IBuse+aX3zv2LK4ddJMY86ipmns6S

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks