General

  • Target

    5ee44107082f771e4aa77410678c75954e1a5216c5f45429a5ad33c7df189f6d

  • Size

    70KB

  • Sample

    241112-tdqk8ayqej

  • MD5

    66af38aa1f940ed8a3de03962de33876

  • SHA1

    c0fac6a3261ac491ceca4dbb0be7fdc4e202a41a

  • SHA256

    5ee44107082f771e4aa77410678c75954e1a5216c5f45429a5ad33c7df189f6d

  • SHA512

    0b6ebc74e7b8f8e54bb8374698dc6d73804ac03fc122233b494ed7e5285852bce01a9b35456d7366680fefa229818f8b4327e7799d40e5922763b2e4517cda3b

  • SSDEEP

    1536:hFcx1aeg1vjrI9U/xvyy1riw+d9bHrkT5gUHz7FxtJ:hFf9kU0QrBkfkT5xHzD

Malware Config

Targets

    • Target

      5ee44107082f771e4aa77410678c75954e1a5216c5f45429a5ad33c7df189f6d

    • Size

      70KB

    • MD5

      66af38aa1f940ed8a3de03962de33876

    • SHA1

      c0fac6a3261ac491ceca4dbb0be7fdc4e202a41a

    • SHA256

      5ee44107082f771e4aa77410678c75954e1a5216c5f45429a5ad33c7df189f6d

    • SHA512

      0b6ebc74e7b8f8e54bb8374698dc6d73804ac03fc122233b494ed7e5285852bce01a9b35456d7366680fefa229818f8b4327e7799d40e5922763b2e4517cda3b

    • SSDEEP

      1536:hFcx1aeg1vjrI9U/xvyy1riw+d9bHrkT5gUHz7FxtJ:hFf9kU0QrBkfkT5xHzD

    • Deletes itself

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks