General

  • Target

    8656249e2f3ebbd2fee91b9ef3570eb069be164a048c7aa7e9fdba1e47dff948N.exe

  • Size

    2.6MB

  • Sample

    241112-v5b3kswnf1

  • MD5

    695cf6e6dc173e440882c347107f82c0

  • SHA1

    cf6f448315a97350f9ea6a7b7e63e36390fb459f

  • SHA256

    8656249e2f3ebbd2fee91b9ef3570eb069be164a048c7aa7e9fdba1e47dff948

  • SHA512

    46a5a4d53ccf9bd0b1451a9ad374cbe27fa062d6080513a2811a8d9c6cf69e5a222b2e3101c4008cbc89661751dc9234844061e2e7599489e7c137a941df2bf0

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bS:sxX7QnxrloE5dpUpUb

Malware Config

Targets

    • Target

      8656249e2f3ebbd2fee91b9ef3570eb069be164a048c7aa7e9fdba1e47dff948N.exe

    • Size

      2.6MB

    • MD5

      695cf6e6dc173e440882c347107f82c0

    • SHA1

      cf6f448315a97350f9ea6a7b7e63e36390fb459f

    • SHA256

      8656249e2f3ebbd2fee91b9ef3570eb069be164a048c7aa7e9fdba1e47dff948

    • SHA512

      46a5a4d53ccf9bd0b1451a9ad374cbe27fa062d6080513a2811a8d9c6cf69e5a222b2e3101c4008cbc89661751dc9234844061e2e7599489e7c137a941df2bf0

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bS:sxX7QnxrloE5dpUpUb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks