General

  • Target

    817fd4307bf54a8701e34a2d1e9f7d65ee85c5d153c7905ad8b520fc2bafb867N

  • Size

    2.6MB

  • Sample

    241112-wtpd7sybmj

  • MD5

    e4fe6c7dc469e9cb844a4fc4ffbd3b70

  • SHA1

    91a15132f474ac38447beb520cbff051c61bdcd9

  • SHA256

    817fd4307bf54a8701e34a2d1e9f7d65ee85c5d153c7905ad8b520fc2bafb867

  • SHA512

    4d05bda826854272adc06e70f347572362a8ffda3936cbf6276d0f574400b5d9ec7e0fcf4f623c243dfabec36d72e8bdd8ce9cc16563a12b17e233a8428e9fab

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBQB/bS:sxX7QnxrloE5dpUp/b

Malware Config

Targets

    • Target

      817fd4307bf54a8701e34a2d1e9f7d65ee85c5d153c7905ad8b520fc2bafb867N

    • Size

      2.6MB

    • MD5

      e4fe6c7dc469e9cb844a4fc4ffbd3b70

    • SHA1

      91a15132f474ac38447beb520cbff051c61bdcd9

    • SHA256

      817fd4307bf54a8701e34a2d1e9f7d65ee85c5d153c7905ad8b520fc2bafb867

    • SHA512

      4d05bda826854272adc06e70f347572362a8ffda3936cbf6276d0f574400b5d9ec7e0fcf4f623c243dfabec36d72e8bdd8ce9cc16563a12b17e233a8428e9fab

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBQB/bS:sxX7QnxrloE5dpUp/b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks