General

  • Target

    3e56d48c4f4ad2138410648f3de4d1957360f602301fff264e183c2e0bbce7d0

  • Size

    3.5MB

  • Sample

    241112-tb7fysvlgv

  • MD5

    7350b4da438dc25d44efc4d56157af4f

  • SHA1

    7df6fb03776ecb37d3fe85af0303040b99aec0cc

  • SHA256

    3e56d48c4f4ad2138410648f3de4d1957360f602301fff264e183c2e0bbce7d0

  • SHA512

    7b10daa196d0539568ea258b910c826a4738c79e37b65e7de64d9dcc285e24d003c12dfb0ecade4b21cda36d9d8a63a2dcc29852bd80de8a17566ae2b15949f1

  • SSDEEP

    49152:J5tzuM0S2S5mLFEuVebedv9uNBb8AftK9qrO1LS9RhSq15vTNuHv/QXd9CQxM4kA:JCFk/fUqrOiOc5z

Malware Config

Targets

    • Target

      3e56d48c4f4ad2138410648f3de4d1957360f602301fff264e183c2e0bbce7d0

    • Size

      3.5MB

    • MD5

      7350b4da438dc25d44efc4d56157af4f

    • SHA1

      7df6fb03776ecb37d3fe85af0303040b99aec0cc

    • SHA256

      3e56d48c4f4ad2138410648f3de4d1957360f602301fff264e183c2e0bbce7d0

    • SHA512

      7b10daa196d0539568ea258b910c826a4738c79e37b65e7de64d9dcc285e24d003c12dfb0ecade4b21cda36d9d8a63a2dcc29852bd80de8a17566ae2b15949f1

    • SSDEEP

      49152:J5tzuM0S2S5mLFEuVebedv9uNBb8AftK9qrO1LS9RhSq15vTNuHv/QXd9CQxM4kA:JCFk/fUqrOiOc5z

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks