General

  • Target

    847c592bf95972ec9f5a68da23b89c0231fa44c6420b322c20a5bbcf85d3e1ab

  • Size

    1.1MB

  • Sample

    241112-tb97vawdkh

  • MD5

    e24aa942c0472f620276adb70fcc6073

  • SHA1

    93e648ccd41a6f2bd01216ede5b64654ae6950e7

  • SHA256

    847c592bf95972ec9f5a68da23b89c0231fa44c6420b322c20a5bbcf85d3e1ab

  • SHA512

    1f6e1b553a3e7dfa527c45877a4769e734158651a869924b0edc0956d241a3ed8306a9ed3e203ec2e8b32bbf095f61892d6cd87ba8d9867aaf6ef79b16971c7a

  • SSDEEP

    24576:b1cXT9T+w6zY8v5a2FZ7WDpk2Kvfd5nP6Wp8zrMBThYBjv:OZ6zY8/7WDaDvfd5iQ8zoBThojv

Malware Config

Targets

    • Target

      847c592bf95972ec9f5a68da23b89c0231fa44c6420b322c20a5bbcf85d3e1ab

    • Size

      1.1MB

    • MD5

      e24aa942c0472f620276adb70fcc6073

    • SHA1

      93e648ccd41a6f2bd01216ede5b64654ae6950e7

    • SHA256

      847c592bf95972ec9f5a68da23b89c0231fa44c6420b322c20a5bbcf85d3e1ab

    • SHA512

      1f6e1b553a3e7dfa527c45877a4769e734158651a869924b0edc0956d241a3ed8306a9ed3e203ec2e8b32bbf095f61892d6cd87ba8d9867aaf6ef79b16971c7a

    • SSDEEP

      24576:b1cXT9T+w6zY8v5a2FZ7WDpk2Kvfd5nP6Wp8zrMBThYBjv:OZ6zY8/7WDaDvfd5iQ8zoBThojv

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks