General

  • Target

    545ba8cb65036998d477dad26a5f2e9c001a611ea5614a06763435e09ba0490b.exe

  • Size

    2.6MB

  • Sample

    241113-p857yascpa

  • MD5

    120571dbad08a755bba3e007ffa81a98

  • SHA1

    9f0724ffeefbf3b3efb3c43f09fbc1c9911768ce

  • SHA256

    545ba8cb65036998d477dad26a5f2e9c001a611ea5614a06763435e09ba0490b

  • SHA512

    0dfd32e5fdb60f450f40acffb875dc5166acea48333aa8d69dc36ff9f0f24ab76969b3cf5c6e9d4ead70f7387ec8bf50b41adc172ab06ede8d746e9c85ab7d73

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBbB/bSG:sxX7QnxrloE5dpUpUbP

Malware Config

Targets

    • Target

      545ba8cb65036998d477dad26a5f2e9c001a611ea5614a06763435e09ba0490b.exe

    • Size

      2.6MB

    • MD5

      120571dbad08a755bba3e007ffa81a98

    • SHA1

      9f0724ffeefbf3b3efb3c43f09fbc1c9911768ce

    • SHA256

      545ba8cb65036998d477dad26a5f2e9c001a611ea5614a06763435e09ba0490b

    • SHA512

      0dfd32e5fdb60f450f40acffb875dc5166acea48333aa8d69dc36ff9f0f24ab76969b3cf5c6e9d4ead70f7387ec8bf50b41adc172ab06ede8d746e9c85ab7d73

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBbB/bSG:sxX7QnxrloE5dpUpUbP

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks