General

  • Target

    c41cd3e5feb209aa6ebe7a330569983c945b0003e361c6dd9c6aa0a68c4aea9cN.exe

  • Size

    2.6MB

  • Sample

    241113-qhe4hasjby

  • MD5

    5c7cd8feedf29a65701d69bc9968ce50

  • SHA1

    1d47e8994ab9c790546ce187f79fbed920ecc827

  • SHA256

    c41cd3e5feb209aa6ebe7a330569983c945b0003e361c6dd9c6aa0a68c4aea9c

  • SHA512

    693bff54a253ac327841f3350fd938b3a861fce058d195a1f7aeaa9f217bf2b03af43cdafb255f5fbc6f9db55749649498769293c388e0ad7d4feef2baaef88c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBuB/bS:sxX7QnxrloE5dpUpBb

Malware Config

Targets

    • Target

      c41cd3e5feb209aa6ebe7a330569983c945b0003e361c6dd9c6aa0a68c4aea9cN.exe

    • Size

      2.6MB

    • MD5

      5c7cd8feedf29a65701d69bc9968ce50

    • SHA1

      1d47e8994ab9c790546ce187f79fbed920ecc827

    • SHA256

      c41cd3e5feb209aa6ebe7a330569983c945b0003e361c6dd9c6aa0a68c4aea9c

    • SHA512

      693bff54a253ac327841f3350fd938b3a861fce058d195a1f7aeaa9f217bf2b03af43cdafb255f5fbc6f9db55749649498769293c388e0ad7d4feef2baaef88c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBuB/bS:sxX7QnxrloE5dpUpBb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks