General

  • Target

    2796fb9d5b265fda1474997832fc2dcefde7bb63253053a98d129b4e15920b17N.exe

  • Size

    3.9MB

  • Sample

    241113-r43mcsxlaj

  • MD5

    8183aa76ca8d95ae1612136306230120

  • SHA1

    6be2c8b0000b5931dea804efde8a8e186093b17f

  • SHA256

    2796fb9d5b265fda1474997832fc2dcefde7bb63253053a98d129b4e15920b17

  • SHA512

    04be9280d624d4783859e59a31e3174421d882007b4c19a339f6656ecb4e53d1bcb675146f34dbce1aa5b52993e0ebf983452315ca692fa275935342292f7ac6

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bSqz8:sxX7QnxrloE5dpUp0bVz8

Malware Config

Targets

    • Target

      2796fb9d5b265fda1474997832fc2dcefde7bb63253053a98d129b4e15920b17N.exe

    • Size

      3.9MB

    • MD5

      8183aa76ca8d95ae1612136306230120

    • SHA1

      6be2c8b0000b5931dea804efde8a8e186093b17f

    • SHA256

      2796fb9d5b265fda1474997832fc2dcefde7bb63253053a98d129b4e15920b17

    • SHA512

      04be9280d624d4783859e59a31e3174421d882007b4c19a339f6656ecb4e53d1bcb675146f34dbce1aa5b52993e0ebf983452315ca692fa275935342292f7ac6

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bSqz8:sxX7QnxrloE5dpUp0bVz8

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks