General

  • Target

    e6b68121a47400b18db1a979cd5b41b2db504dff320e78a9bf9ab37188062e20N.exe

  • Size

    2.6MB

  • Sample

    241112-tcvhsawdlc

  • MD5

    df276bcb1f914cb47c95475ca973215f

  • SHA1

    f1c6c0c15ed5a06358e99bd668718eafc7ddb877

  • SHA256

    006766a866081353ed3f6c7878ae74b20d168ff7500e03c5875643c70f67d888

  • SHA512

    e66cedb68e0c1b03afeaefca981f98d131b61b5551a412424e5d7b62c8f28ec28dcc7f3428940145a299493e2f4e4b0ea515db9c1eb8027ef8cf5d52fa8a2702

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bSA:sxX7QnxrloE5dpUpzbF

Malware Config

Targets

    • Target

      e6b68121a47400b18db1a979cd5b41b2db504dff320e78a9bf9ab37188062e20N.exe

    • Size

      2.6MB

    • MD5

      df276bcb1f914cb47c95475ca973215f

    • SHA1

      f1c6c0c15ed5a06358e99bd668718eafc7ddb877

    • SHA256

      006766a866081353ed3f6c7878ae74b20d168ff7500e03c5875643c70f67d888

    • SHA512

      e66cedb68e0c1b03afeaefca981f98d131b61b5551a412424e5d7b62c8f28ec28dcc7f3428940145a299493e2f4e4b0ea515db9c1eb8027ef8cf5d52fa8a2702

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBsB/bSA:sxX7QnxrloE5dpUpzbF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks