General

  • Target

    1b23c648951714822f3923017953e08459e3aa10c1300060881e866348731c9fN.exe

  • Size

    2.6MB

  • Sample

    241113-sfxa4stlgy

  • MD5

    53f6fc035c827131b355089f13267fa0

  • SHA1

    a1c576fecf5cae299a6494c7a247af3af816b45b

  • SHA256

    1b23c648951714822f3923017953e08459e3aa10c1300060881e866348731c9f

  • SHA512

    eabc8d95ce9c1f1db0553591c59f3cd5bced3d20df39e8352c83836d44994c29b2da5ca822a4eca346e32d217026089c340264ef5cc38a457cb5651d7a6597a3

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bS:sxX7QnxrloE5dpUpwb

Malware Config

Targets

    • Target

      1b23c648951714822f3923017953e08459e3aa10c1300060881e866348731c9fN.exe

    • Size

      2.6MB

    • MD5

      53f6fc035c827131b355089f13267fa0

    • SHA1

      a1c576fecf5cae299a6494c7a247af3af816b45b

    • SHA256

      1b23c648951714822f3923017953e08459e3aa10c1300060881e866348731c9f

    • SHA512

      eabc8d95ce9c1f1db0553591c59f3cd5bced3d20df39e8352c83836d44994c29b2da5ca822a4eca346e32d217026089c340264ef5cc38a457cb5651d7a6597a3

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bS:sxX7QnxrloE5dpUpwb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks