General

  • Target

    56a3e0ce98cb12399de2793524a821a9780c30ad0caac4e4d3c00919d27ccbe0.exe

  • Size

    2.6MB

  • Sample

    241112-v3v3nsxflh

  • MD5

    499a8995913a6eda2c2c9bd2e02854af

  • SHA1

    3a225cbc8149dcbd09972e622ae23dc88b137cc7

  • SHA256

    56a3e0ce98cb12399de2793524a821a9780c30ad0caac4e4d3c00919d27ccbe0

  • SHA512

    ac7156075833d95f40387eb5e4ea360b5d9b383cfdc05b81979369747eeb4cb3e4fe8a1949253f8b59a6b359e1256630e383c42dc63766388ba1699128b13575

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBuB/bSi:sxX7QnxrloE5dpUpBbN

Malware Config

Targets

    • Target

      56a3e0ce98cb12399de2793524a821a9780c30ad0caac4e4d3c00919d27ccbe0.exe

    • Size

      2.6MB

    • MD5

      499a8995913a6eda2c2c9bd2e02854af

    • SHA1

      3a225cbc8149dcbd09972e622ae23dc88b137cc7

    • SHA256

      56a3e0ce98cb12399de2793524a821a9780c30ad0caac4e4d3c00919d27ccbe0

    • SHA512

      ac7156075833d95f40387eb5e4ea360b5d9b383cfdc05b81979369747eeb4cb3e4fe8a1949253f8b59a6b359e1256630e383c42dc63766388ba1699128b13575

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBuB/bSi:sxX7QnxrloE5dpUpBbN

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks