General

  • Target

    2ecc19f8588b880d078dfb0472d444111ffcaaec4625eef49ea289f8435e9411.exe

  • Size

    2.6MB

  • Sample

    241112-ws6xvs1nam

  • MD5

    e134b4b9e45593e251843eafb114450c

  • SHA1

    6eea385b194ce77354700b2f4525c3ee1b53ab8a

  • SHA256

    2ecc19f8588b880d078dfb0472d444111ffcaaec4625eef49ea289f8435e9411

  • SHA512

    6afed2373bd4544035cb80cc4f7015e6e246b6fbbc7326ac07c78c904ad803cfdd6998b2a55cdaa1addbc62131a9aa8ecc5dbb2f9b3a09d05b9beec8f986c123

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBfB/bSqS:sxX7QnxrloE5dpUpkbVS

Malware Config

Targets

    • Target

      2ecc19f8588b880d078dfb0472d444111ffcaaec4625eef49ea289f8435e9411.exe

    • Size

      2.6MB

    • MD5

      e134b4b9e45593e251843eafb114450c

    • SHA1

      6eea385b194ce77354700b2f4525c3ee1b53ab8a

    • SHA256

      2ecc19f8588b880d078dfb0472d444111ffcaaec4625eef49ea289f8435e9411

    • SHA512

      6afed2373bd4544035cb80cc4f7015e6e246b6fbbc7326ac07c78c904ad803cfdd6998b2a55cdaa1addbc62131a9aa8ecc5dbb2f9b3a09d05b9beec8f986c123

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBfB/bSqS:sxX7QnxrloE5dpUpkbVS

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks