General

  • Target

    e63db28addcf5a7914fa54c939f6d699eb190cf7459bc569925797c255f772c4.exe

  • Size

    2.6MB

  • Sample

    241113-pnvwgavpdm

  • MD5

    9356ba0b5a3ba9c19a0f9babdbdb29c6

  • SHA1

    15edabe74df1398ac67243c6c9ddf33295355bb9

  • SHA256

    e63db28addcf5a7914fa54c939f6d699eb190cf7459bc569925797c255f772c4

  • SHA512

    3884b83919f057897f77ea912042ddc2862376aa64d1024532a5a5e4e58a37ee81ba2a0018a8bfd1c45ce36ab5658e9b5d5823fc1f4bf914082ad9f14ce597b1

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSW:sxX7QnxrloE5dpUpdbH

Malware Config

Targets

    • Target

      e63db28addcf5a7914fa54c939f6d699eb190cf7459bc569925797c255f772c4.exe

    • Size

      2.6MB

    • MD5

      9356ba0b5a3ba9c19a0f9babdbdb29c6

    • SHA1

      15edabe74df1398ac67243c6c9ddf33295355bb9

    • SHA256

      e63db28addcf5a7914fa54c939f6d699eb190cf7459bc569925797c255f772c4

    • SHA512

      3884b83919f057897f77ea912042ddc2862376aa64d1024532a5a5e4e58a37ee81ba2a0018a8bfd1c45ce36ab5658e9b5d5823fc1f4bf914082ad9f14ce597b1

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSW:sxX7QnxrloE5dpUpdbH

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks