General

  • Target

    459c49c0d61428a4435033021436649249fac367f70a9396b98132ebfd94c0c9.exe

  • Size

    2.6MB

  • Sample

    241112-snretsvgrg

  • MD5

    2b4f60ab7f48ab04f29290f34d442f63

  • SHA1

    e677cfb27b3250f0c627f652da8bfd1a9ce7cf09

  • SHA256

    459c49c0d61428a4435033021436649249fac367f70a9396b98132ebfd94c0c9

  • SHA512

    f3771a470036da3078211e056da89fbb8dcacd6ccbcc8ff85bbc61b491810b4059294c98fdb8b66d33624b9f566dbf79aa6435d008edfcc1db024956c97d4148

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqd:sxX7QnxrloE5dpUpabVd

Malware Config

Targets

    • Target

      459c49c0d61428a4435033021436649249fac367f70a9396b98132ebfd94c0c9.exe

    • Size

      2.6MB

    • MD5

      2b4f60ab7f48ab04f29290f34d442f63

    • SHA1

      e677cfb27b3250f0c627f652da8bfd1a9ce7cf09

    • SHA256

      459c49c0d61428a4435033021436649249fac367f70a9396b98132ebfd94c0c9

    • SHA512

      f3771a470036da3078211e056da89fbb8dcacd6ccbcc8ff85bbc61b491810b4059294c98fdb8b66d33624b9f566dbf79aa6435d008edfcc1db024956c97d4148

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBNB/bSqd:sxX7QnxrloE5dpUpabVd

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks