General

  • Target

    9c20448b9d15ccfce199e6864204f6bac1394f46068ef4d73f8bae347fb7c3c7N

  • Size

    2.6MB

  • Sample

    241112-tv3xwavpgz

  • MD5

    0d9cdbabefb323bb783fffb0f68731e0

  • SHA1

    03978a05b1a8ba7d0b048f71347db904d41ca9d2

  • SHA256

    9c20448b9d15ccfce199e6864204f6bac1394f46068ef4d73f8bae347fb7c3c7

  • SHA512

    544fa0224a610e356ccc8844c7993f1d2767fc0ba825493900de2551ecfb05feaa16a7715c0843240860d6488c6f8aff30ce275d33edc38589e2afea96213550

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBVB/bS:sxX7QnxrloE5dpUp6b

Malware Config

Targets

    • Target

      9c20448b9d15ccfce199e6864204f6bac1394f46068ef4d73f8bae347fb7c3c7N

    • Size

      2.6MB

    • MD5

      0d9cdbabefb323bb783fffb0f68731e0

    • SHA1

      03978a05b1a8ba7d0b048f71347db904d41ca9d2

    • SHA256

      9c20448b9d15ccfce199e6864204f6bac1394f46068ef4d73f8bae347fb7c3c7

    • SHA512

      544fa0224a610e356ccc8844c7993f1d2767fc0ba825493900de2551ecfb05feaa16a7715c0843240860d6488c6f8aff30ce275d33edc38589e2afea96213550

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBVB/bS:sxX7QnxrloE5dpUp6b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks