General

  • Target

    1f9f68e6e97cf3f704463771bd3245857773e5c159a6490fa5674b191984b800

  • Size

    2.6MB

  • Sample

    241113-y45kaayfml

  • MD5

    5071cfe138f8d3dd276d2fd97dee67e9

  • SHA1

    815048ce9066e9ca80bf9bcd7ab40517c2bd11d4

  • SHA256

    1f9f68e6e97cf3f704463771bd3245857773e5c159a6490fa5674b191984b800

  • SHA512

    8609d21026e2f3b63f5307dabb47ffe05f0046e4098b94161cb1ca7bd9a2779378bb7b47a6b1032ad5f9da9f6136354a90336ce243342f8a6d9fb7559b1fa50a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bS:sxX7QnxrloE5dpUp7b

Malware Config

Targets

    • Target

      1f9f68e6e97cf3f704463771bd3245857773e5c159a6490fa5674b191984b800

    • Size

      2.6MB

    • MD5

      5071cfe138f8d3dd276d2fd97dee67e9

    • SHA1

      815048ce9066e9ca80bf9bcd7ab40517c2bd11d4

    • SHA256

      1f9f68e6e97cf3f704463771bd3245857773e5c159a6490fa5674b191984b800

    • SHA512

      8609d21026e2f3b63f5307dabb47ffe05f0046e4098b94161cb1ca7bd9a2779378bb7b47a6b1032ad5f9da9f6136354a90336ce243342f8a6d9fb7559b1fa50a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB4B/bS:sxX7QnxrloE5dpUp7b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks