General

  • Target

    8a5cd6344d4b44ef5336c36747a2010d42e44fd3c2b165c7e790be1bc52e823fN.exe

  • Size

    2.6MB

  • Sample

    241113-sdl3cstlds

  • MD5

    8b0519c9d46fd2802849d29c24b17b62

  • SHA1

    d535386d58d099d5311893f1be9d09fba685f2d4

  • SHA256

    fcf93e47d3926a34c62a74095dc4a98efb446d40fa6a5f29cd8157fbf747782a

  • SHA512

    86d77546f8c311fb66ff9a96aa13d9d54dc2bfca1157d08715dbbaa2a3b93c914779ab5ae124fb3f2ee8232bd1831e3464ca10f7260396f001fda11d3ad45242

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB8B/bSA:sxX7QnxrloE5dpUpzbD

Malware Config

Targets

    • Target

      8a5cd6344d4b44ef5336c36747a2010d42e44fd3c2b165c7e790be1bc52e823fN.exe

    • Size

      2.6MB

    • MD5

      8b0519c9d46fd2802849d29c24b17b62

    • SHA1

      d535386d58d099d5311893f1be9d09fba685f2d4

    • SHA256

      fcf93e47d3926a34c62a74095dc4a98efb446d40fa6a5f29cd8157fbf747782a

    • SHA512

      86d77546f8c311fb66ff9a96aa13d9d54dc2bfca1157d08715dbbaa2a3b93c914779ab5ae124fb3f2ee8232bd1831e3464ca10f7260396f001fda11d3ad45242

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB8B/bSA:sxX7QnxrloE5dpUpzbD

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks