General

  • Target

    03ac86998c54779d86c43469b3db3b89d4890f5e4b9e9724bdd55ee10f11f517.exe

  • Size

    2.6MB

  • Sample

    241113-qavtzsscqg

  • MD5

    d9df4f285e33e29b6f5bd374268f847a

  • SHA1

    117defef690100bfa8bd1d4b2cf78ea4336f783d

  • SHA256

    03ac86998c54779d86c43469b3db3b89d4890f5e4b9e9724bdd55ee10f11f517

  • SHA512

    1881469949b12a4547bff3436408dca8628cde8d59e9062136818706160a0045bb95bbea3c286a75c20b088c659b760dc9e54fc8a1db0add00f6af1441e305c2

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBrB/bS2:sxX7QnxrloE5dpUpgbP

Malware Config

Targets

    • Target

      03ac86998c54779d86c43469b3db3b89d4890f5e4b9e9724bdd55ee10f11f517.exe

    • Size

      2.6MB

    • MD5

      d9df4f285e33e29b6f5bd374268f847a

    • SHA1

      117defef690100bfa8bd1d4b2cf78ea4336f783d

    • SHA256

      03ac86998c54779d86c43469b3db3b89d4890f5e4b9e9724bdd55ee10f11f517

    • SHA512

      1881469949b12a4547bff3436408dca8628cde8d59e9062136818706160a0045bb95bbea3c286a75c20b088c659b760dc9e54fc8a1db0add00f6af1441e305c2

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBrB/bS2:sxX7QnxrloE5dpUpgbP

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks