General

  • Target

    d5e8ba5a2718dd979ad0875edd90a4332f664431f41aded2cbf89e020a57a338.exe

  • Size

    2.6MB

  • Sample

    241112-whsbqaxhra

  • MD5

    d1118600025bf6051d36e52d9b30d98e

  • SHA1

    9e8436e916d57477f7e55882c6a4dbdd71afafaf

  • SHA256

    d5e8ba5a2718dd979ad0875edd90a4332f664431f41aded2cbf89e020a57a338

  • SHA512

    498051524cd22d37d3a7303da5b5d09e1bfc2ee8d9f79802e7cef5b83f78e759a6c9f90649e77823082e575515c18fe4e552cbc643ca0f1d595f0d996dc5ee67

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bSi:sxX7QnxrloE5dpUp1bN

Malware Config

Targets

    • Target

      d5e8ba5a2718dd979ad0875edd90a4332f664431f41aded2cbf89e020a57a338.exe

    • Size

      2.6MB

    • MD5

      d1118600025bf6051d36e52d9b30d98e

    • SHA1

      9e8436e916d57477f7e55882c6a4dbdd71afafaf

    • SHA256

      d5e8ba5a2718dd979ad0875edd90a4332f664431f41aded2cbf89e020a57a338

    • SHA512

      498051524cd22d37d3a7303da5b5d09e1bfc2ee8d9f79802e7cef5b83f78e759a6c9f90649e77823082e575515c18fe4e552cbc643ca0f1d595f0d996dc5ee67

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bSi:sxX7QnxrloE5dpUp1bN

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks