General

  • Target

    277a6420750a7ea12df2d614803d0d37e68a555f7099e1eaa57a4252e06f0f50N.exe

  • Size

    2.6MB

  • Sample

    241113-p52qcasenr

  • MD5

    544776193414ca5440bb091c3ebab6c0

  • SHA1

    65d30aef91ecbbcdfcfd7671f1737160455e19a4

  • SHA256

    277a6420750a7ea12df2d614803d0d37e68a555f7099e1eaa57a4252e06f0f50

  • SHA512

    51025e1c05710ad3a44dcf0cb213af85f7b06889bcad147bb92f598a32115feac267c7d1314dd5d556f330f8c1384aa4ab69db25cf062e109ad0ab136b1459e6

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUpfb

Malware Config

Targets

    • Target

      277a6420750a7ea12df2d614803d0d37e68a555f7099e1eaa57a4252e06f0f50N.exe

    • Size

      2.6MB

    • MD5

      544776193414ca5440bb091c3ebab6c0

    • SHA1

      65d30aef91ecbbcdfcfd7671f1737160455e19a4

    • SHA256

      277a6420750a7ea12df2d614803d0d37e68a555f7099e1eaa57a4252e06f0f50

    • SHA512

      51025e1c05710ad3a44dcf0cb213af85f7b06889bcad147bb92f598a32115feac267c7d1314dd5d556f330f8c1384aa4ab69db25cf062e109ad0ab136b1459e6

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bS:sxX7QnxrloE5dpUpfb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks