General

  • Target

    923601a81437a58e2879a3b2d93142d6499705cfbaa9cd14de08a1c34a8fa665.exe

  • Size

    2.6MB

  • Sample

    241113-ycsrea1pep

  • MD5

    1dcab58847bbdc1946ae654401159642

  • SHA1

    5e43d89573a5b4e6ecf31b9a1ddf5e41e672de90

  • SHA256

    923601a81437a58e2879a3b2d93142d6499705cfbaa9cd14de08a1c34a8fa665

  • SHA512

    0c726f8bbcc2d59945960bbc5ba6054562e3660c9c3dd2168195b53c73ff49cd165549cf8788f50595b61e2094b1d6453e3d768be47fb9f8d2fc2b115aa1457f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSqN:sxX7QnxrloE5dpUpnbVN

Malware Config

Targets

    • Target

      923601a81437a58e2879a3b2d93142d6499705cfbaa9cd14de08a1c34a8fa665.exe

    • Size

      2.6MB

    • MD5

      1dcab58847bbdc1946ae654401159642

    • SHA1

      5e43d89573a5b4e6ecf31b9a1ddf5e41e672de90

    • SHA256

      923601a81437a58e2879a3b2d93142d6499705cfbaa9cd14de08a1c34a8fa665

    • SHA512

      0c726f8bbcc2d59945960bbc5ba6054562e3660c9c3dd2168195b53c73ff49cd165549cf8788f50595b61e2094b1d6453e3d768be47fb9f8d2fc2b115aa1457f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBkB/bSqN:sxX7QnxrloE5dpUpnbVN

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks