General

  • Target

    1e183cdc3c644dbcfd35676548a831265eb736bd86914f72d023136db8eab2f8.exe

  • Size

    2.6MB

  • Sample

    241113-scftystlbv

  • MD5

    3f98266af937b561d5932ac385116a37

  • SHA1

    e598203a47ef6313c7c568307d1abf31a531d07f

  • SHA256

    1e183cdc3c644dbcfd35676548a831265eb736bd86914f72d023136db8eab2f8

  • SHA512

    40443a6a42679d5ea0a47c8f6b4ae62f58e0ee5d6ce3d5711b52a4d3e3934d7babf2cbf7e3172efd9f72a8ae66952850f1c42627315d6381c039e248e5cc9d55

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSW:sxX7QnxrloE5dpUp2bv

Malware Config

Targets

    • Target

      1e183cdc3c644dbcfd35676548a831265eb736bd86914f72d023136db8eab2f8.exe

    • Size

      2.6MB

    • MD5

      3f98266af937b561d5932ac385116a37

    • SHA1

      e598203a47ef6313c7c568307d1abf31a531d07f

    • SHA256

      1e183cdc3c644dbcfd35676548a831265eb736bd86914f72d023136db8eab2f8

    • SHA512

      40443a6a42679d5ea0a47c8f6b4ae62f58e0ee5d6ce3d5711b52a4d3e3934d7babf2cbf7e3172efd9f72a8ae66952850f1c42627315d6381c039e248e5cc9d55

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSW:sxX7QnxrloE5dpUp2bv

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks