General

  • Target

    cea49a935ced24fbc7fbc6feb02db4e0e42fc2ce85bce3d8345aceb8a200b039.exe

  • Size

    2.6MB

  • Sample

    241113-ppwjdsvpem

  • MD5

    b85185b7b3921c81a87af8b9f1080a3b

  • SHA1

    2308b0de8f58b9f26325268ce1ad74057b703c57

  • SHA256

    cea49a935ced24fbc7fbc6feb02db4e0e42fc2ce85bce3d8345aceb8a200b039

  • SHA512

    95638cab7b017d62751d0743cf82b4a7180636026fc774766ef5c78aede4fb25ce6b750c87ab2461f1ec5f2187ad22c7660957a313bb18a0d1d68a1b808142b4

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bSqE:sxX7QnxrloE5dpUpubVE

Malware Config

Targets

    • Target

      cea49a935ced24fbc7fbc6feb02db4e0e42fc2ce85bce3d8345aceb8a200b039.exe

    • Size

      2.6MB

    • MD5

      b85185b7b3921c81a87af8b9f1080a3b

    • SHA1

      2308b0de8f58b9f26325268ce1ad74057b703c57

    • SHA256

      cea49a935ced24fbc7fbc6feb02db4e0e42fc2ce85bce3d8345aceb8a200b039

    • SHA512

      95638cab7b017d62751d0743cf82b4a7180636026fc774766ef5c78aede4fb25ce6b750c87ab2461f1ec5f2187ad22c7660957a313bb18a0d1d68a1b808142b4

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBxB/bSqE:sxX7QnxrloE5dpUpubVE

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks