General

  • Target

    0926cbc01ff07cd476498ee7ac04c72b622e0f34a9a04415af417bfa9770d98aN.exe

  • Size

    3.0MB

  • Sample

    241112-r8971atncx

  • MD5

    d025bcd147b637f26e516371fce67f30

  • SHA1

    b5235daa63ffd92b56c0ae26da5b78f43cdd442d

  • SHA256

    0926cbc01ff07cd476498ee7ac04c72b622e0f34a9a04415af417bfa9770d98a

  • SHA512

    dfdaba6a06366deb6d193c9b210b61093a48852efc1532807e8d17a1599e14f0b2fa529d88a6e2ffffbef6b0653495ff56d19e77be776c07f0cf4da2ff1ee668

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bSqz8b6LNX:sxX7QnxrloE5dpUpKbVz8eLF

Malware Config

Targets

    • Target

      0926cbc01ff07cd476498ee7ac04c72b622e0f34a9a04415af417bfa9770d98aN.exe

    • Size

      3.0MB

    • MD5

      d025bcd147b637f26e516371fce67f30

    • SHA1

      b5235daa63ffd92b56c0ae26da5b78f43cdd442d

    • SHA256

      0926cbc01ff07cd476498ee7ac04c72b622e0f34a9a04415af417bfa9770d98a

    • SHA512

      dfdaba6a06366deb6d193c9b210b61093a48852efc1532807e8d17a1599e14f0b2fa529d88a6e2ffffbef6b0653495ff56d19e77be776c07f0cf4da2ff1ee668

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bSqz8b6LNX:sxX7QnxrloE5dpUpKbVz8eLF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks