General

  • Target

    c343704f93a5cc8e3d320d39ac60a74578194b1d8087a3e7094c001ed54cb99eN.exe

  • Size

    2.6MB

  • Sample

    241112-wb6wja1kfn

  • MD5

    a45cb7aa6c0ae27d954a3b043ae490b0

  • SHA1

    f45e6b8dafb888ed87fdabe53e4033040d473360

  • SHA256

    c343704f93a5cc8e3d320d39ac60a74578194b1d8087a3e7094c001ed54cb99e

  • SHA512

    96f642744b454cfb837ee6dd157d3b9f0b728b2a7de929e9ee9fb3784230479f0f95db3e618ad5ac682dcc87328de537eb5cf0d230c1a8a65a1b0cab3231be45

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSq:sxX7QnxrloE5dpUpSbV

Malware Config

Targets

    • Target

      c343704f93a5cc8e3d320d39ac60a74578194b1d8087a3e7094c001ed54cb99eN.exe

    • Size

      2.6MB

    • MD5

      a45cb7aa6c0ae27d954a3b043ae490b0

    • SHA1

      f45e6b8dafb888ed87fdabe53e4033040d473360

    • SHA256

      c343704f93a5cc8e3d320d39ac60a74578194b1d8087a3e7094c001ed54cb99e

    • SHA512

      96f642744b454cfb837ee6dd157d3b9f0b728b2a7de929e9ee9fb3784230479f0f95db3e618ad5ac682dcc87328de537eb5cf0d230c1a8a65a1b0cab3231be45

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSq:sxX7QnxrloE5dpUpSbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks