General

  • Target

    465614b664b54926a6aa28fed028474faf411c657b481f45bc59cf992e3f1b3aN.exe

  • Size

    2.6MB

  • Sample

    241112-tktlfsweqf

  • MD5

    a9bf1a09cc8e49ee91d9acc51b961b60

  • SHA1

    f9799a28cfc96f1c5fcdb09f913aa1c314f07c40

  • SHA256

    465614b664b54926a6aa28fed028474faf411c657b481f45bc59cf992e3f1b3a

  • SHA512

    1fe912b8e385d37970c039d6abe778ee9e9073c12505e170f5cfafb6d3f28dd42f04a8ba5d651834bd9cc27412c055778f33f850b68906bb6efed05f8368033e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bS:sxX7QnxrloE5dpUp5b

Malware Config

Targets

    • Target

      465614b664b54926a6aa28fed028474faf411c657b481f45bc59cf992e3f1b3aN.exe

    • Size

      2.6MB

    • MD5

      a9bf1a09cc8e49ee91d9acc51b961b60

    • SHA1

      f9799a28cfc96f1c5fcdb09f913aa1c314f07c40

    • SHA256

      465614b664b54926a6aa28fed028474faf411c657b481f45bc59cf992e3f1b3a

    • SHA512

      1fe912b8e385d37970c039d6abe778ee9e9073c12505e170f5cfafb6d3f28dd42f04a8ba5d651834bd9cc27412c055778f33f850b68906bb6efed05f8368033e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bS:sxX7QnxrloE5dpUp5b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks