General

  • Target

    278452a3bd3a4155145ec626e6b1b66a8bb60e3635d1571bec25a8afab03d4cfN.exe

  • Size

    2.6MB

  • Sample

    241113-rmr5assqbx

  • MD5

    13b8f379b0c10bb639cfd25e9a1833e0

  • SHA1

    94def8a59ea7ecc6c28d5672125a6d25bddbc93f

  • SHA256

    278452a3bd3a4155145ec626e6b1b66a8bb60e3635d1571bec25a8afab03d4cf

  • SHA512

    892fa1f3b6b0424d22d0b70fc90e2a0fb4ca5b98d9cabcf66e73d6f5c1b86d592104dcaaa6b42cc88d2970414119cb19eddf14ffdf033999c021eab7342cb82c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpxb

Malware Config

Targets

    • Target

      278452a3bd3a4155145ec626e6b1b66a8bb60e3635d1571bec25a8afab03d4cfN.exe

    • Size

      2.6MB

    • MD5

      13b8f379b0c10bb639cfd25e9a1833e0

    • SHA1

      94def8a59ea7ecc6c28d5672125a6d25bddbc93f

    • SHA256

      278452a3bd3a4155145ec626e6b1b66a8bb60e3635d1571bec25a8afab03d4cf

    • SHA512

      892fa1f3b6b0424d22d0b70fc90e2a0fb4ca5b98d9cabcf66e73d6f5c1b86d592104dcaaa6b42cc88d2970414119cb19eddf14ffdf033999c021eab7342cb82c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bS:sxX7QnxrloE5dpUpxb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks