General

  • Target

    237eeeb1fe2af3bdb92b9c0e1d79ab522eaf24616c42246bac3edeef24f5418a

  • Size

    2.6MB

  • Sample

    241113-y8tzcayfqj

  • MD5

    12d7b41e7808891ce71c6fc009c32740

  • SHA1

    34f83d4202792246332a80da780be357c713ec44

  • SHA256

    237eeeb1fe2af3bdb92b9c0e1d79ab522eaf24616c42246bac3edeef24f5418a

  • SHA512

    59eebca9cdcf0be8825f87cf88299e9164cea183a04d3fa653a1f64b2cc603066c85221798f894af8b2ccafaf0f8be534992d05da9542014f57143a8fe49fb22

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUp4b

Malware Config

Targets

    • Target

      237eeeb1fe2af3bdb92b9c0e1d79ab522eaf24616c42246bac3edeef24f5418a

    • Size

      2.6MB

    • MD5

      12d7b41e7808891ce71c6fc009c32740

    • SHA1

      34f83d4202792246332a80da780be357c713ec44

    • SHA256

      237eeeb1fe2af3bdb92b9c0e1d79ab522eaf24616c42246bac3edeef24f5418a

    • SHA512

      59eebca9cdcf0be8825f87cf88299e9164cea183a04d3fa653a1f64b2cc603066c85221798f894af8b2ccafaf0f8be534992d05da9542014f57143a8fe49fb22

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB7B/bS:sxX7QnxrloE5dpUp4b

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks