General

  • Target

    2ab7c6cfa9059ec7eb17b26ae5c05cd3be95d810b8492c38b0e86722cdc82d87N.exe

  • Size

    2.6MB

  • Sample

    241112-sc6qdatpay

  • MD5

    87af2a702deb442f74be6aab95069360

  • SHA1

    0427e9cf15b81ee81c31cc424b62305987980337

  • SHA256

    2ab7c6cfa9059ec7eb17b26ae5c05cd3be95d810b8492c38b0e86722cdc82d87

  • SHA512

    264361fdf8918cf91797db5cfaf947784d67e4a2b52220764bd6cb7b53a5a7b6bf3b66e985e246b51486de2037281ecbb586fcc326e496e907e8019e411a3f97

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bS:sxX7QnxrloE5dpUpxb

Malware Config

Targets

    • Target

      2ab7c6cfa9059ec7eb17b26ae5c05cd3be95d810b8492c38b0e86722cdc82d87N.exe

    • Size

      2.6MB

    • MD5

      87af2a702deb442f74be6aab95069360

    • SHA1

      0427e9cf15b81ee81c31cc424b62305987980337

    • SHA256

      2ab7c6cfa9059ec7eb17b26ae5c05cd3be95d810b8492c38b0e86722cdc82d87

    • SHA512

      264361fdf8918cf91797db5cfaf947784d67e4a2b52220764bd6cb7b53a5a7b6bf3b66e985e246b51486de2037281ecbb586fcc326e496e907e8019e411a3f97

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bS:sxX7QnxrloE5dpUpxb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks