General

  • Target

    fba81ed435615f141b36b0ae95403c4356057260d3c86eeb4cb70468808950e4.exe

  • Size

    2.6MB

  • Sample

    241112-tc1d2awdlq

  • MD5

    15f2369ef169ddb1f52f2f9efc2ce4af

  • SHA1

    2995c2fdc4018deadfe1e02504abf34b968cf325

  • SHA256

    fba81ed435615f141b36b0ae95403c4356057260d3c86eeb4cb70468808950e4

  • SHA512

    a6c7001a4a32e7629d142e58d45622cef5edd92d8b9badf27676006bf198ca08056292d780a077eb97c04c557f92a51b072ea76d44855ab5abb84d344466ce99

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBnB/bSm:sxX7QnxrloE5dpUpgb3

Malware Config

Targets

    • Target

      fba81ed435615f141b36b0ae95403c4356057260d3c86eeb4cb70468808950e4.exe

    • Size

      2.6MB

    • MD5

      15f2369ef169ddb1f52f2f9efc2ce4af

    • SHA1

      2995c2fdc4018deadfe1e02504abf34b968cf325

    • SHA256

      fba81ed435615f141b36b0ae95403c4356057260d3c86eeb4cb70468808950e4

    • SHA512

      a6c7001a4a32e7629d142e58d45622cef5edd92d8b9badf27676006bf198ca08056292d780a077eb97c04c557f92a51b072ea76d44855ab5abb84d344466ce99

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBnB/bSm:sxX7QnxrloE5dpUpgb3

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks