General

  • Target

    3f32bb778573b2e60d0a3570bd999ca9673c86f422d8cd9f9cb3c57c52c6ce7dN.exe

  • Size

    2.6MB

  • Sample

    241113-sacdratkgs

  • MD5

    73a73a7fc545b101596f227415896720

  • SHA1

    750a98a371e46963f13c8f5a3cde6e6eaa3395f5

  • SHA256

    3f32bb778573b2e60d0a3570bd999ca9673c86f422d8cd9f9cb3c57c52c6ce7d

  • SHA512

    71a0f7deb3cac25e576fadc8f2128253eb833724acd9be35ce3fabe646d963efce87fd17f4fd0a59e543fc8184324572ff266d8bca149105d0378c6568fdb1fe

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bSq:sxX7QnxrloE5dpUpSbV

Malware Config

Targets

    • Target

      3f32bb778573b2e60d0a3570bd999ca9673c86f422d8cd9f9cb3c57c52c6ce7dN.exe

    • Size

      2.6MB

    • MD5

      73a73a7fc545b101596f227415896720

    • SHA1

      750a98a371e46963f13c8f5a3cde6e6eaa3395f5

    • SHA256

      3f32bb778573b2e60d0a3570bd999ca9673c86f422d8cd9f9cb3c57c52c6ce7d

    • SHA512

      71a0f7deb3cac25e576fadc8f2128253eb833724acd9be35ce3fabe646d963efce87fd17f4fd0a59e543fc8184324572ff266d8bca149105d0378c6568fdb1fe

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBFB/bSq:sxX7QnxrloE5dpUpSbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks