General

  • Target

    05bc66475bdc509c65c7b1babcd20f7b61ea5443e8dd2b553fa44d32f25f25ec.exe

  • Size

    2.6MB

  • Sample

    241113-ydewya1pfn

  • MD5

    f9332d1734f57969da7ded64ef12f4da

  • SHA1

    7e022760ce33faaa74b8e7d0e2e0fce7c35b074f

  • SHA256

    05bc66475bdc509c65c7b1babcd20f7b61ea5443e8dd2b553fa44d32f25f25ec

  • SHA512

    2306931e32d11d852340ad24726370cbc40797da08892e38ea4ae07b28cb0fbdfccd486a47fe13ffe06a12621890b9aad0bea3d73699450e0ef081ce9860af1b

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bSw:sxX7QnxrloE5dpUpqbD

Malware Config

Targets

    • Target

      05bc66475bdc509c65c7b1babcd20f7b61ea5443e8dd2b553fa44d32f25f25ec.exe

    • Size

      2.6MB

    • MD5

      f9332d1734f57969da7ded64ef12f4da

    • SHA1

      7e022760ce33faaa74b8e7d0e2e0fce7c35b074f

    • SHA256

      05bc66475bdc509c65c7b1babcd20f7b61ea5443e8dd2b553fa44d32f25f25ec

    • SHA512

      2306931e32d11d852340ad24726370cbc40797da08892e38ea4ae07b28cb0fbdfccd486a47fe13ffe06a12621890b9aad0bea3d73699450e0ef081ce9860af1b

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBdB/bSw:sxX7QnxrloE5dpUpqbD

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks