General

  • Target

    a862941f92a8fb744f43d5337c79457653505246939f7218d0f525d6a6076eb3N.exe

  • Size

    2.6MB

  • Sample

    241112-snhspaylar

  • MD5

    574504ad4e6f0eb346ec1b8cf2e65940

  • SHA1

    6dab08753abe431e00faa8ffd2d6eb1284276906

  • SHA256

    a862941f92a8fb744f43d5337c79457653505246939f7218d0f525d6a6076eb3

  • SHA512

    6638c97751f95893418078e9c8459a31a2c3e91ed77127862b124fd8b9100ff9cb3fe47f8096b51b38664118208d6d24e9271b2e90b4456bfc07a837db355b3d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBZB/bS:sxX7QnxrloE5dpUp6b

Malware Config

Targets

    • Target

      a862941f92a8fb744f43d5337c79457653505246939f7218d0f525d6a6076eb3N.exe

    • Size

      2.6MB

    • MD5

      574504ad4e6f0eb346ec1b8cf2e65940

    • SHA1

      6dab08753abe431e00faa8ffd2d6eb1284276906

    • SHA256

      a862941f92a8fb744f43d5337c79457653505246939f7218d0f525d6a6076eb3

    • SHA512

      6638c97751f95893418078e9c8459a31a2c3e91ed77127862b124fd8b9100ff9cb3fe47f8096b51b38664118208d6d24e9271b2e90b4456bfc07a837db355b3d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBZB/bS:sxX7QnxrloE5dpUp6b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks