General

  • Target

    aaf4c696d2592c2b3820b37f3ca69fe12c4ab9c12aaa6a0d25974a8c297d3abf

  • Size

    56KB

  • Sample

    241112-r9fd1sverb

  • MD5

    9437b3634fa37936e0a651becd6056a4

  • SHA1

    32c264a1e54eba1730c1e702813ccd216cf944b9

  • SHA256

    aaf4c696d2592c2b3820b37f3ca69fe12c4ab9c12aaa6a0d25974a8c297d3abf

  • SHA512

    092512928a1f3c371d97e66e50ee96cd46a00a09ec8ff6d40ac920376f03c47914033ad01cdfeea4bd3b70f2528915315b9c116b2ec16c71f4722b42a797f39b

  • SSDEEP

    768:IBusO5RroZJ767395uINnEfDKBbUCp1OTZ+/VPqgt6jpYU5ltbDrYiI0oPxWExI:IBuse+Zk77RNzLiTOx6jWWvr78Pxc

Malware Config

Targets

    • Target

      aaf4c696d2592c2b3820b37f3ca69fe12c4ab9c12aaa6a0d25974a8c297d3abf

    • Size

      56KB

    • MD5

      9437b3634fa37936e0a651becd6056a4

    • SHA1

      32c264a1e54eba1730c1e702813ccd216cf944b9

    • SHA256

      aaf4c696d2592c2b3820b37f3ca69fe12c4ab9c12aaa6a0d25974a8c297d3abf

    • SHA512

      092512928a1f3c371d97e66e50ee96cd46a00a09ec8ff6d40ac920376f03c47914033ad01cdfeea4bd3b70f2528915315b9c116b2ec16c71f4722b42a797f39b

    • SSDEEP

      768:IBusO5RroZJ767395uINnEfDKBbUCp1OTZ+/VPqgt6jpYU5ltbDrYiI0oPxWExI:IBuse+Zk77RNzLiTOx6jWWvr78Pxc

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks