General

  • Target

    f03ae703025ad1f2ada0980663f4a570ac45fde0a8432c3e55f15842fca12991N

  • Size

    2.6MB

  • Sample

    241113-ya5m7ayape

  • MD5

    a7172e3772dd64f4418ee823799ceaf0

  • SHA1

    e8654e3b124822780dc0352afbb9d48fba9cb1bd

  • SHA256

    f03ae703025ad1f2ada0980663f4a570ac45fde0a8432c3e55f15842fca12991

  • SHA512

    656ab678b827e676702557b770e82ed0b8d37c795e93ca4c08e445023da77778082fd09c3e056ff960c0a4b93041a1750267379a4f5a0d0a5137bcc486527a2a

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bS:sxX7QnxrloE5dpUpfb

Malware Config

Targets

    • Target

      f03ae703025ad1f2ada0980663f4a570ac45fde0a8432c3e55f15842fca12991N

    • Size

      2.6MB

    • MD5

      a7172e3772dd64f4418ee823799ceaf0

    • SHA1

      e8654e3b124822780dc0352afbb9d48fba9cb1bd

    • SHA256

      f03ae703025ad1f2ada0980663f4a570ac45fde0a8432c3e55f15842fca12991

    • SHA512

      656ab678b827e676702557b770e82ed0b8d37c795e93ca4c08e445023da77778082fd09c3e056ff960c0a4b93041a1750267379a4f5a0d0a5137bcc486527a2a

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBEB/bS:sxX7QnxrloE5dpUpfb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks