General

  • Target

    38200ac9a0ef05054aa5b393f8880f99fe966de405295a5356b08f054f809d2b.exe

  • Size

    2.6MB

  • Sample

    241113-y5r1ksxqgs

  • MD5

    f47855314f7455539d36ba85a1ece450

  • SHA1

    66c8cfb5082f0de7f2e224cd62a18fd4ce45316f

  • SHA256

    38200ac9a0ef05054aa5b393f8880f99fe966de405295a5356b08f054f809d2b

  • SHA512

    5755870d4e687f9ea68204e908be22f079bd77ec302eff549c944ee1f065ea0c60fd1db8186a18e0732d6a9b8fd6b9e3dd2061d93e55036542ede0317518fd5b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bSq9:sxX7QnxrloE5dpUpmbV9

Malware Config

Targets

    • Target

      38200ac9a0ef05054aa5b393f8880f99fe966de405295a5356b08f054f809d2b.exe

    • Size

      2.6MB

    • MD5

      f47855314f7455539d36ba85a1ece450

    • SHA1

      66c8cfb5082f0de7f2e224cd62a18fd4ce45316f

    • SHA256

      38200ac9a0ef05054aa5b393f8880f99fe966de405295a5356b08f054f809d2b

    • SHA512

      5755870d4e687f9ea68204e908be22f079bd77ec302eff549c944ee1f065ea0c60fd1db8186a18e0732d6a9b8fd6b9e3dd2061d93e55036542ede0317518fd5b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBpB/bSq9:sxX7QnxrloE5dpUpmbV9

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks