General

  • Target

    8a0ce30f05924643b3453c0158bbbc8642f4c4b8fed2604a0a97b6ced4a07275.exe

  • Size

    2.6MB

  • Sample

    241113-p1cwesscjc

  • MD5

    0be7c1415905cb2b93f542ac81e5eede

  • SHA1

    73e4ada8bd58735197406d09affc2df0fa322abc

  • SHA256

    8a0ce30f05924643b3453c0158bbbc8642f4c4b8fed2604a0a97b6ced4a07275

  • SHA512

    d61d1a2899919fe56ca0bb89d677b94597bac9dba5f0a8e5347c1d0675a56065abbda39a83a65bd676e5a13f1194e6ddab4b48eaab451ea9e9cbd1811a5b9335

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSS:sxX7QnxrloE5dpUpgbF

Malware Config

Targets

    • Target

      8a0ce30f05924643b3453c0158bbbc8642f4c4b8fed2604a0a97b6ced4a07275.exe

    • Size

      2.6MB

    • MD5

      0be7c1415905cb2b93f542ac81e5eede

    • SHA1

      73e4ada8bd58735197406d09affc2df0fa322abc

    • SHA256

      8a0ce30f05924643b3453c0158bbbc8642f4c4b8fed2604a0a97b6ced4a07275

    • SHA512

      d61d1a2899919fe56ca0bb89d677b94597bac9dba5f0a8e5347c1d0675a56065abbda39a83a65bd676e5a13f1194e6ddab4b48eaab451ea9e9cbd1811a5b9335

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bSS:sxX7QnxrloE5dpUpgbF

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks