General

  • Target

    c882d3539ebba5d8679caa9d383be86aff4923ad4c11c4fc2bbe1c9221cf3164.exe

  • Size

    2.6MB

  • Sample

    241112-wlxqlsyakk

  • MD5

    7f1e3f9188c369c41a7172ec25994788

  • SHA1

    24d0801db6c7421e6855962119e4020b9756929c

  • SHA256

    c882d3539ebba5d8679caa9d383be86aff4923ad4c11c4fc2bbe1c9221cf3164

  • SHA512

    462a0fe18426eb3ccdfcf086128c6aca0b5c5108cfc701c2c787f78462c52e665240fdb76db9bec5c9ae04b10577c9cfaffb8b336ac77fdee6cc36f944171098

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBuB/bSC:sxX7QnxrloE5dpUp9bF

Malware Config

Targets

    • Target

      c882d3539ebba5d8679caa9d383be86aff4923ad4c11c4fc2bbe1c9221cf3164.exe

    • Size

      2.6MB

    • MD5

      7f1e3f9188c369c41a7172ec25994788

    • SHA1

      24d0801db6c7421e6855962119e4020b9756929c

    • SHA256

      c882d3539ebba5d8679caa9d383be86aff4923ad4c11c4fc2bbe1c9221cf3164

    • SHA512

      462a0fe18426eb3ccdfcf086128c6aca0b5c5108cfc701c2c787f78462c52e665240fdb76db9bec5c9ae04b10577c9cfaffb8b336ac77fdee6cc36f944171098

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBuB/bSC:sxX7QnxrloE5dpUp9bF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks