General

  • Target

    04ca0910136a3fd10928c27b6b16c08e3230e17671db3ef9969e8d9717fdda3a

  • Size

    758KB

  • Sample

    241113-xzn63a1mcm

  • MD5

    ddc0864dc5c76fdbd5ab496a1b20c169

  • SHA1

    443f4750298bd34157c1d3923a05293e6263fcd5

  • SHA256

    04ca0910136a3fd10928c27b6b16c08e3230e17671db3ef9969e8d9717fdda3a

  • SHA512

    13c37fdfe3b2cc6fa78f8e5da65a39c064e406469579f979ae59a2f3ec7ccb37cdf1bfe1eb70b9d372315eb6a38a49c8a6060f5aa9e9bcda07960632ba6e7f29

  • SSDEEP

    12288:GjYRm7QOmJgwgCp95QflGMoIgxJ9kkPXJlJDT1blxn2+TtQQg6NoshKMPcmQ7K2L:G0j5gwgw59JdPvJFbn2+JnguosQME/Bl

Malware Config

Targets

    • Target

      04ca0910136a3fd10928c27b6b16c08e3230e17671db3ef9969e8d9717fdda3a

    • Size

      758KB

    • MD5

      ddc0864dc5c76fdbd5ab496a1b20c169

    • SHA1

      443f4750298bd34157c1d3923a05293e6263fcd5

    • SHA256

      04ca0910136a3fd10928c27b6b16c08e3230e17671db3ef9969e8d9717fdda3a

    • SHA512

      13c37fdfe3b2cc6fa78f8e5da65a39c064e406469579f979ae59a2f3ec7ccb37cdf1bfe1eb70b9d372315eb6a38a49c8a6060f5aa9e9bcda07960632ba6e7f29

    • SSDEEP

      12288:GjYRm7QOmJgwgCp95QflGMoIgxJ9kkPXJlJDT1blxn2+TtQQg6NoshKMPcmQ7K2L:G0j5gwgw59JdPvJFbn2+JnguosQME/Bl

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks