General

  • Target

    a75a6b229ab2f80b37f60a84409754e4c680ccdcca993d6c6e3e74ae6725bdacN.exe

  • Size

    2.6MB

  • Sample

    241113-ske8dstmdy

  • MD5

    166190567c38fc69d6362a939cb8b820

  • SHA1

    c0fa4331f0a07b491bb77e2ffc7b50aafbedbf26

  • SHA256

    a75a6b229ab2f80b37f60a84409754e4c680ccdcca993d6c6e3e74ae6725bdac

  • SHA512

    0c9d6dd2d7bcd6032dd9d6a58a8d122114aea48faa674abfe3460e9071983de23a266e603617007e0b6eeb27aa148b068e69a43b8e17d3c91e44541af20a9d72

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bSq:sxX7QnxrloE5dpUpfbV

Malware Config

Targets

    • Target

      a75a6b229ab2f80b37f60a84409754e4c680ccdcca993d6c6e3e74ae6725bdacN.exe

    • Size

      2.6MB

    • MD5

      166190567c38fc69d6362a939cb8b820

    • SHA1

      c0fa4331f0a07b491bb77e2ffc7b50aafbedbf26

    • SHA256

      a75a6b229ab2f80b37f60a84409754e4c680ccdcca993d6c6e3e74ae6725bdac

    • SHA512

      0c9d6dd2d7bcd6032dd9d6a58a8d122114aea48faa674abfe3460e9071983de23a266e603617007e0b6eeb27aa148b068e69a43b8e17d3c91e44541af20a9d72

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBcB/bSq:sxX7QnxrloE5dpUpfbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks