General

  • Target

    fb334f576f25efb6a4f245e45f6518db89ac5048278b1f62cb3e004379d8f75a

  • Size

    2.6MB

  • Sample

    241112-scmx9svfnc

  • MD5

    f67b692b014bf67c7da1d02a23851af0

  • SHA1

    5636faea123edcd0c238d9b6bd61514d5c465a7f

  • SHA256

    fb334f576f25efb6a4f245e45f6518db89ac5048278b1f62cb3e004379d8f75a

  • SHA512

    915daf79214df013374a29d23218805b2ab9d6923615376a54576f4980648c9445b69e6fc99c1c1fd21bbe0e5eba75ba7a47ca7e73953ac1d43e79e625e37f5b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpnb

Malware Config

Targets

    • Target

      fb334f576f25efb6a4f245e45f6518db89ac5048278b1f62cb3e004379d8f75a

    • Size

      2.6MB

    • MD5

      f67b692b014bf67c7da1d02a23851af0

    • SHA1

      5636faea123edcd0c238d9b6bd61514d5c465a7f

    • SHA256

      fb334f576f25efb6a4f245e45f6518db89ac5048278b1f62cb3e004379d8f75a

    • SHA512

      915daf79214df013374a29d23218805b2ab9d6923615376a54576f4980648c9445b69e6fc99c1c1fd21bbe0e5eba75ba7a47ca7e73953ac1d43e79e625e37f5b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBUB/bS:sxX7QnxrloE5dpUpnb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks