General

  • Target

    6d830048dc3ce6770660995d313bde6d5030601ea837e8e361be23feaa341326N.exe

  • Size

    2.6MB

  • Sample

    241112-sj1spsvgpl

  • MD5

    dd43fff1c3ff408163870f91653f2c30

  • SHA1

    17be4014ea372205f6fe8c3042702457885f8ed0

  • SHA256

    6d830048dc3ce6770660995d313bde6d5030601ea837e8e361be23feaa341326

  • SHA512

    6791a5bd329fa9577f5d5d388452021c543a30ab46af1c7698f777c69fd6c6b1b2afbe2c809ad8aa5914c4105b5280b51f3d658cc0c5c8f507e1928207412acf

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSq:sxX7QnxrloE5dpUpnbV

Malware Config

Targets

    • Target

      6d830048dc3ce6770660995d313bde6d5030601ea837e8e361be23feaa341326N.exe

    • Size

      2.6MB

    • MD5

      dd43fff1c3ff408163870f91653f2c30

    • SHA1

      17be4014ea372205f6fe8c3042702457885f8ed0

    • SHA256

      6d830048dc3ce6770660995d313bde6d5030601ea837e8e361be23feaa341326

    • SHA512

      6791a5bd329fa9577f5d5d388452021c543a30ab46af1c7698f777c69fd6c6b1b2afbe2c809ad8aa5914c4105b5280b51f3d658cc0c5c8f507e1928207412acf

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSq:sxX7QnxrloE5dpUpnbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks