General

  • Target

    8fd57ccf44a9de8b280ec576846ce09042c18c8a5b8b37565fbcbb9440d299a3N.exe

  • Size

    2.6MB

  • Sample

    241113-pqpggascrn

  • MD5

    7190d047f10147012b1f9a9539bb21aa

  • SHA1

    afce78c65148dfb904c4a6bb4dd009cfb0b5b116

  • SHA256

    6988c9f9e7a06be1fe81af6a8182e5bea0cb9169384f5086582410e27d878b4b

  • SHA512

    eeb6647fc5a01727a0e246d40bc52297afeb5ca651a102a44f2a80e95082fb0e8d2d52cf42ea7894607be301e8b76c3e98bcd3b426db0a4b0cdea32a68ba310a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSqq:sxX7QnxrloE5dpUpJbVq

Malware Config

Targets

    • Target

      8fd57ccf44a9de8b280ec576846ce09042c18c8a5b8b37565fbcbb9440d299a3N.exe

    • Size

      2.6MB

    • MD5

      7190d047f10147012b1f9a9539bb21aa

    • SHA1

      afce78c65148dfb904c4a6bb4dd009cfb0b5b116

    • SHA256

      6988c9f9e7a06be1fe81af6a8182e5bea0cb9169384f5086582410e27d878b4b

    • SHA512

      eeb6647fc5a01727a0e246d40bc52297afeb5ca651a102a44f2a80e95082fb0e8d2d52cf42ea7894607be301e8b76c3e98bcd3b426db0a4b0cdea32a68ba310a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSqq:sxX7QnxrloE5dpUpJbVq

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks