General

  • Target

    f2920dc35d924c8fefc61d8388f5c901fb945ad7a2ebdac8e5fd07435ea48d6e

  • Size

    666KB

  • Sample

    241112-tb41tswdkf

  • MD5

    b35e7425b570d23c57a20129a0fd0f25

  • SHA1

    2618f451d013d92735d12d8ccf84d8c65c9bf6fb

  • SHA256

    f2920dc35d924c8fefc61d8388f5c901fb945ad7a2ebdac8e5fd07435ea48d6e

  • SHA512

    1de787823d541552c1b619f4a2bb7c22e8059041cd99f63cfb491894bc5397d362e25a557f5ffa375cd9b6897068efdc03b85ff3711e1d6e233e1e26abb91f33

  • SSDEEP

    6144:b13PC9LRU0ySj14WH+JPb7uL8zRMnJjNhAp7SO8zRMnJjNhAp7S8FRcdEKFVAh7f:b13KPFlTz

Malware Config

Targets

    • Target

      f2920dc35d924c8fefc61d8388f5c901fb945ad7a2ebdac8e5fd07435ea48d6e

    • Size

      666KB

    • MD5

      b35e7425b570d23c57a20129a0fd0f25

    • SHA1

      2618f451d013d92735d12d8ccf84d8c65c9bf6fb

    • SHA256

      f2920dc35d924c8fefc61d8388f5c901fb945ad7a2ebdac8e5fd07435ea48d6e

    • SHA512

      1de787823d541552c1b619f4a2bb7c22e8059041cd99f63cfb491894bc5397d362e25a557f5ffa375cd9b6897068efdc03b85ff3711e1d6e233e1e26abb91f33

    • SSDEEP

      6144:b13PC9LRU0ySj14WH+JPb7uL8zRMnJjNhAp7SO8zRMnJjNhAp7S8FRcdEKFVAh7f:b13KPFlTz

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks