General

  • Target

    96b43a264d58d9320db6e4689b1b4831d68cdc5807cc1d471797fe383e78f212.exe

  • Size

    2.6MB

  • Sample

    241112-sf4p7atpfv

  • MD5

    672257518f2024d29b9194591a1b28e6

  • SHA1

    963f0b85db6d6cd9fc72fae7bf85f828dec4c003

  • SHA256

    96b43a264d58d9320db6e4689b1b4831d68cdc5807cc1d471797fe383e78f212

  • SHA512

    5da2832604ffc84fa5f4e47b8af73941a3014f8bd05e0e10df05f1b5c386ade06c44a1eb22e1742968cd506ad1c51e24c8bcc8237f05bd89cd523a42bc57477b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBSB/bSi:sxX7QnxrloE5dpUpJbl

Malware Config

Targets

    • Target

      96b43a264d58d9320db6e4689b1b4831d68cdc5807cc1d471797fe383e78f212.exe

    • Size

      2.6MB

    • MD5

      672257518f2024d29b9194591a1b28e6

    • SHA1

      963f0b85db6d6cd9fc72fae7bf85f828dec4c003

    • SHA256

      96b43a264d58d9320db6e4689b1b4831d68cdc5807cc1d471797fe383e78f212

    • SHA512

      5da2832604ffc84fa5f4e47b8af73941a3014f8bd05e0e10df05f1b5c386ade06c44a1eb22e1742968cd506ad1c51e24c8bcc8237f05bd89cd523a42bc57477b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBSB/bSi:sxX7QnxrloE5dpUpJbl

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks