General

  • Target

    03a36c6102726577e6e2db85ec5fbe77bc1441da0c529143b28a39337c731e08N.exe

  • Size

    2.6MB

  • Sample

    241113-rxtqwasrez

  • MD5

    9b65840bc9e18bb374855b30b6cc01c0

  • SHA1

    53776daeb28c3fa52956bef9ac618135e3e86154

  • SHA256

    03a36c6102726577e6e2db85ec5fbe77bc1441da0c529143b28a39337c731e08

  • SHA512

    6da7507bc3bfd6fd92efd98ea2bdb9d219060d1445aa24fc37f3630fc44a14c5496c8f49b239ce8a7e8d7a0016cfa54d5d6678f635986a17375b248b6b053efa

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bS:sxX7QnxrloE5dpUpCb

Malware Config

Targets

    • Target

      03a36c6102726577e6e2db85ec5fbe77bc1441da0c529143b28a39337c731e08N.exe

    • Size

      2.6MB

    • MD5

      9b65840bc9e18bb374855b30b6cc01c0

    • SHA1

      53776daeb28c3fa52956bef9ac618135e3e86154

    • SHA256

      03a36c6102726577e6e2db85ec5fbe77bc1441da0c529143b28a39337c731e08

    • SHA512

      6da7507bc3bfd6fd92efd98ea2bdb9d219060d1445aa24fc37f3630fc44a14c5496c8f49b239ce8a7e8d7a0016cfa54d5d6678f635986a17375b248b6b053efa

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBRB/bS:sxX7QnxrloE5dpUpCb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks