General

  • Target

    32389379f2ab77ecacad1e64ca9d6c321079282b2f6a38be07a99617140f4e19.exe

  • Size

    2.6MB

  • Sample

    241113-pxrv6s1qaw

  • MD5

    6d7efdf63b73ec9685bd2de0cd320a22

  • SHA1

    d9531046f9afa73dcb0cbeb669f33b0a1810c717

  • SHA256

    32389379f2ab77ecacad1e64ca9d6c321079282b2f6a38be07a99617140f4e19

  • SHA512

    c1af286dbe32d3db103edd58bb36cb232d35ec1a64263e37d406b5b8af37b7a9ac3342094d0fed2aba75d7431bdfe6a0d4fc7a09edc0a2f43dde423ff75a9712

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bSy:sxX7QnxrloE5dpUp5b9

Malware Config

Targets

    • Target

      32389379f2ab77ecacad1e64ca9d6c321079282b2f6a38be07a99617140f4e19.exe

    • Size

      2.6MB

    • MD5

      6d7efdf63b73ec9685bd2de0cd320a22

    • SHA1

      d9531046f9afa73dcb0cbeb669f33b0a1810c717

    • SHA256

      32389379f2ab77ecacad1e64ca9d6c321079282b2f6a38be07a99617140f4e19

    • SHA512

      c1af286dbe32d3db103edd58bb36cb232d35ec1a64263e37d406b5b8af37b7a9ac3342094d0fed2aba75d7431bdfe6a0d4fc7a09edc0a2f43dde423ff75a9712

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBKB/bSy:sxX7QnxrloE5dpUp5b9

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks