General

  • Target

    3fd11f28a7ec28907b20bafd08c699ec7c8ccdf451572c8a78f7abc5939b78f3N.exe

  • Size

    2.6MB

  • Sample

    241112-wgs7mawqfy

  • MD5

    df82f7df727c97a7ab31dc09dc5a9010

  • SHA1

    232c9c1d218f4d11480d6f2547f358ce8850ca10

  • SHA256

    3fd11f28a7ec28907b20bafd08c699ec7c8ccdf451572c8a78f7abc5939b78f3

  • SHA512

    67423d42451dd672e37852447039a6f11d659be19dea3de812cf2b70b479f9234c85031231bff23923f1482847875f3c8b8b4ab01e43054f72edde6c9a0dcf96

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bS:sxX7QnxrloE5dpUp0b

Malware Config

Targets

    • Target

      3fd11f28a7ec28907b20bafd08c699ec7c8ccdf451572c8a78f7abc5939b78f3N.exe

    • Size

      2.6MB

    • MD5

      df82f7df727c97a7ab31dc09dc5a9010

    • SHA1

      232c9c1d218f4d11480d6f2547f358ce8850ca10

    • SHA256

      3fd11f28a7ec28907b20bafd08c699ec7c8ccdf451572c8a78f7abc5939b78f3

    • SHA512

      67423d42451dd672e37852447039a6f11d659be19dea3de812cf2b70b479f9234c85031231bff23923f1482847875f3c8b8b4ab01e43054f72edde6c9a0dcf96

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bS:sxX7QnxrloE5dpUp0b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks