General

  • Target

    c2951b5790b8f915c4de76584e1a63be9c9260f91bd60a1f9262193d601f110c.exe

  • Size

    2.6MB

  • Sample

    241113-p2341avrcn

  • MD5

    ca661f5cd2856cd1122359874de44e3b

  • SHA1

    f0b4625283a19a4295338113db34bbdc1ceacc70

  • SHA256

    c2951b5790b8f915c4de76584e1a63be9c9260f91bd60a1f9262193d601f110c

  • SHA512

    f435e71273b767d3e893377093cac3cc06c1166c6d20501548d9e6ad4c802cbd869e2615114f18f4536ffbb12f90e8082ab098d346a8f838868e97b43f510c0f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bSql:sxX7QnxrloE5dpUpNbVl

Malware Config

Targets

    • Target

      c2951b5790b8f915c4de76584e1a63be9c9260f91bd60a1f9262193d601f110c.exe

    • Size

      2.6MB

    • MD5

      ca661f5cd2856cd1122359874de44e3b

    • SHA1

      f0b4625283a19a4295338113db34bbdc1ceacc70

    • SHA256

      c2951b5790b8f915c4de76584e1a63be9c9260f91bd60a1f9262193d601f110c

    • SHA512

      f435e71273b767d3e893377093cac3cc06c1166c6d20501548d9e6ad4c802cbd869e2615114f18f4536ffbb12f90e8082ab098d346a8f838868e97b43f510c0f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bSql:sxX7QnxrloE5dpUpNbVl

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks