General

  • Target

    69ebd22b6ba3c0d5917620fdb73307a6a3de4048fe2e576fcc3b8a180f0fa267.exe

  • Size

    2.6MB

  • Sample

    241112-trxlpavpbz

  • MD5

    f84d5034970cd2d529efd7feeaf53adb

  • SHA1

    b1b97130db737f9204ba039f93f78c54e2e46d97

  • SHA256

    69ebd22b6ba3c0d5917620fdb73307a6a3de4048fe2e576fcc3b8a180f0fa267

  • SHA512

    e20d1cb34d11d9a3b8ed2ec493d642cf14259029fb3e7266742605798358d88bcd767f011b74c665b73082ba179ac6cf2948d78bcd7e2643b182b8cd01977795

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bSqV:sxX7QnxrloE5dpUpSbVV

Malware Config

Targets

    • Target

      69ebd22b6ba3c0d5917620fdb73307a6a3de4048fe2e576fcc3b8a180f0fa267.exe

    • Size

      2.6MB

    • MD5

      f84d5034970cd2d529efd7feeaf53adb

    • SHA1

      b1b97130db737f9204ba039f93f78c54e2e46d97

    • SHA256

      69ebd22b6ba3c0d5917620fdb73307a6a3de4048fe2e576fcc3b8a180f0fa267

    • SHA512

      e20d1cb34d11d9a3b8ed2ec493d642cf14259029fb3e7266742605798358d88bcd767f011b74c665b73082ba179ac6cf2948d78bcd7e2643b182b8cd01977795

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bSqV:sxX7QnxrloE5dpUpSbVV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks