General

  • Target

    f76c1d49bde9fa3a834938018f2526a95a5689f5c28ae9fd0182df91edd0829cN.exe

  • Size

    2.6MB

  • Sample

    241113-xwkz8sxfqc

  • MD5

    b1190ca09a9c8c25a1f42f54d4111610

  • SHA1

    0d3012da159f546197a7221bbbe93d5271cfbeee

  • SHA256

    f76c1d49bde9fa3a834938018f2526a95a5689f5c28ae9fd0182df91edd0829c

  • SHA512

    5084554cdd016b179c0c25f0462ef86bcc5c1c14bb2a5ffc9547030373ead400227bfc14c54afa1060b66cb8cff193d01a9333d8f97100098096f9d4b8e1b316

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSq:sxX7QnxrloE5dpUpSbV

Malware Config

Targets

    • Target

      f76c1d49bde9fa3a834938018f2526a95a5689f5c28ae9fd0182df91edd0829cN.exe

    • Size

      2.6MB

    • MD5

      b1190ca09a9c8c25a1f42f54d4111610

    • SHA1

      0d3012da159f546197a7221bbbe93d5271cfbeee

    • SHA256

      f76c1d49bde9fa3a834938018f2526a95a5689f5c28ae9fd0182df91edd0829c

    • SHA512

      5084554cdd016b179c0c25f0462ef86bcc5c1c14bb2a5ffc9547030373ead400227bfc14c54afa1060b66cb8cff193d01a9333d8f97100098096f9d4b8e1b316

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBBB/bSq:sxX7QnxrloE5dpUpSbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks