General

  • Target

    dbbc8fae83a88a15a9cec5f72a4e7849de3665be2b414de9651bdb8515932f2f.exe

  • Size

    2.6MB

  • Sample

    241113-pqdpzasaqf

  • MD5

    21595eda753906cfd9a16188cd594e78

  • SHA1

    d0302972c82bd56d4524afa85d5682551028975b

  • SHA256

    dbbc8fae83a88a15a9cec5f72a4e7849de3665be2b414de9651bdb8515932f2f

  • SHA512

    6a7e9e7bcaf7ca925f79f62cde5afe8ccdecd90ba2cc651e8388dcfbf5bd9360c3d1843823bab31224ad6471a65634617e99f36a00678cd5955802d88c383b2d

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB0B/bS/:sxX7QnxrloE5dpUpPb8

Malware Config

Targets

    • Target

      dbbc8fae83a88a15a9cec5f72a4e7849de3665be2b414de9651bdb8515932f2f.exe

    • Size

      2.6MB

    • MD5

      21595eda753906cfd9a16188cd594e78

    • SHA1

      d0302972c82bd56d4524afa85d5682551028975b

    • SHA256

      dbbc8fae83a88a15a9cec5f72a4e7849de3665be2b414de9651bdb8515932f2f

    • SHA512

      6a7e9e7bcaf7ca925f79f62cde5afe8ccdecd90ba2cc651e8388dcfbf5bd9360c3d1843823bab31224ad6471a65634617e99f36a00678cd5955802d88c383b2d

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB0B/bS/:sxX7QnxrloE5dpUpPb8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks