General

  • Target

    b10023dba5be1b0c3e2a7f0db6e241144253f8e2e061cd74b7f85ad5e4d0e2fd.exe

  • Size

    2.6MB

  • Sample

    241113-y99fesxrct

  • MD5

    3e8a9b9a4cc57c924d3b34dfb18724bb

  • SHA1

    4575894c02f672475fbefc7a3d1437fb48e648ca

  • SHA256

    b10023dba5be1b0c3e2a7f0db6e241144253f8e2e061cd74b7f85ad5e4d0e2fd

  • SHA512

    469f3d96e4c1883ee0b43d5b4c92e6d199bd4f8551cd0473b8e7487626685666f2ebc9f5e1487a2a19f5ebcf659582b948d9e3a22a776646460c97900093cba5

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBtB/bSm:sxX7QnxrloE5dpUpCbH

Malware Config

Targets

    • Target

      b10023dba5be1b0c3e2a7f0db6e241144253f8e2e061cd74b7f85ad5e4d0e2fd.exe

    • Size

      2.6MB

    • MD5

      3e8a9b9a4cc57c924d3b34dfb18724bb

    • SHA1

      4575894c02f672475fbefc7a3d1437fb48e648ca

    • SHA256

      b10023dba5be1b0c3e2a7f0db6e241144253f8e2e061cd74b7f85ad5e4d0e2fd

    • SHA512

      469f3d96e4c1883ee0b43d5b4c92e6d199bd4f8551cd0473b8e7487626685666f2ebc9f5e1487a2a19f5ebcf659582b948d9e3a22a776646460c97900093cba5

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBtB/bSm:sxX7QnxrloE5dpUpCbH

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks