General

  • Target

    57e389f40cf57f59eadaf9e0225d29e437d67109820c21f4e4a4de3f54fd3fc8N.exe

  • Size

    2.6MB

  • Sample

    241113-rwsgestdmc

  • MD5

    86b811a732d64f1d7a9bbb655a6a4b84

  • SHA1

    8d5a00a09e1bdbf10fa00df353cc591b3310b6a3

  • SHA256

    026415047a7e2f7298c30621b252189851361948be4b32dc1680eab563976b92

  • SHA512

    06b388c984f836bbfd8106c17bbe5d66305ebabbcfc22b781eface0a93674a195d0c68ac9ac3e8feea3ae9884720937b227fde9dfdddb1955bf55382b2ed2ed5

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bSP:sxX7QnxrloE5dpUpvbg

Malware Config

Targets

    • Target

      57e389f40cf57f59eadaf9e0225d29e437d67109820c21f4e4a4de3f54fd3fc8N.exe

    • Size

      2.6MB

    • MD5

      86b811a732d64f1d7a9bbb655a6a4b84

    • SHA1

      8d5a00a09e1bdbf10fa00df353cc591b3310b6a3

    • SHA256

      026415047a7e2f7298c30621b252189851361948be4b32dc1680eab563976b92

    • SHA512

      06b388c984f836bbfd8106c17bbe5d66305ebabbcfc22b781eface0a93674a195d0c68ac9ac3e8feea3ae9884720937b227fde9dfdddb1955bf55382b2ed2ed5

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBgB/bSP:sxX7QnxrloE5dpUpvbg

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks