General

  • Target

    3d041ed6a12705e2b7587bbe5919dab769d4ca3db2e2fecbaa08a3ac516bd52aN.exe

  • Size

    2.6MB

  • Sample

    241113-r1195atjb1

  • MD5

    dfe7fd321317575be51d8702bbdab4f5

  • SHA1

    cc001efa4b2d2f524ceabe914c35ec17b0142a46

  • SHA256

    a8e773f3c44788a74314e3b8668d1150a2d69d79e8fe40ef911827204492fc41

  • SHA512

    169f0dc1d02464c65dc1bd76b0b5df785488c91648c9a9d89e8b3d8b7c8f8dd0c7d91a20aefb8f558932b79b7189b0598acc1ad1c33c6c5b9a8df863a841c87a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bSx:sxX7QnxrloE5dpUprbW

Malware Config

Targets

    • Target

      3d041ed6a12705e2b7587bbe5919dab769d4ca3db2e2fecbaa08a3ac516bd52aN.exe

    • Size

      2.6MB

    • MD5

      dfe7fd321317575be51d8702bbdab4f5

    • SHA1

      cc001efa4b2d2f524ceabe914c35ec17b0142a46

    • SHA256

      a8e773f3c44788a74314e3b8668d1150a2d69d79e8fe40ef911827204492fc41

    • SHA512

      169f0dc1d02464c65dc1bd76b0b5df785488c91648c9a9d89e8b3d8b7c8f8dd0c7d91a20aefb8f558932b79b7189b0598acc1ad1c33c6c5b9a8df863a841c87a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bSx:sxX7QnxrloE5dpUprbW

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks