General

  • Target

    d4b72066beccec4ad50bee4a0a7d7ca373b8084b60ad3bc2037971185e956c71.exe

  • Size

    2.6MB

  • Sample

    241112-wt3xlaybmf

  • MD5

    7997ca5f5ee8f74a63bcce7062793a41

  • SHA1

    3ac3b5b52d1030b697497cdeeea8614d43244c30

  • SHA256

    d4b72066beccec4ad50bee4a0a7d7ca373b8084b60ad3bc2037971185e956c71

  • SHA512

    df426725bf94796af968feb34ad5f3d44dfbc06395474ceaffe8ea3669356d13c9e6d5b55c6df397a0a72e5cd135bb5de05f165ea6507efe85c6bf430ada0bcb

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBZB/bSi:sxX7QnxrloE5dpUp+bN

Malware Config

Targets

    • Target

      d4b72066beccec4ad50bee4a0a7d7ca373b8084b60ad3bc2037971185e956c71.exe

    • Size

      2.6MB

    • MD5

      7997ca5f5ee8f74a63bcce7062793a41

    • SHA1

      3ac3b5b52d1030b697497cdeeea8614d43244c30

    • SHA256

      d4b72066beccec4ad50bee4a0a7d7ca373b8084b60ad3bc2037971185e956c71

    • SHA512

      df426725bf94796af968feb34ad5f3d44dfbc06395474ceaffe8ea3669356d13c9e6d5b55c6df397a0a72e5cd135bb5de05f165ea6507efe85c6bf430ada0bcb

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBZB/bSi:sxX7QnxrloE5dpUp+bN

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks