General

  • Target

    cd4b150179df2861982faafd90ab56bd2eae14cc951a2cb23f0a219a4a7cd7c7.exe

  • Size

    2.8MB

  • Sample

    241113-zc3r2sxre1

  • MD5

    c0b11b1ee225326fa0e6685451b6676b

  • SHA1

    c8cf0fe9abebf14f01abf56179443a2d78ce95b6

  • SHA256

    cd4b150179df2861982faafd90ab56bd2eae14cc951a2cb23f0a219a4a7cd7c7

  • SHA512

    4bf717be3edb3abc6f9e208fea5a8a74da9cacf469c9846f090da7d528a44ad3d9e75180fd5acf38981ab4f5a7df1e62c274d7ce1477a8d5b636c6cbb01a7a38

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bSqz8P:sxX7QnxrloE5dpUpdbVz8P

Malware Config

Targets

    • Target

      cd4b150179df2861982faafd90ab56bd2eae14cc951a2cb23f0a219a4a7cd7c7.exe

    • Size

      2.8MB

    • MD5

      c0b11b1ee225326fa0e6685451b6676b

    • SHA1

      c8cf0fe9abebf14f01abf56179443a2d78ce95b6

    • SHA256

      cd4b150179df2861982faafd90ab56bd2eae14cc951a2cb23f0a219a4a7cd7c7

    • SHA512

      4bf717be3edb3abc6f9e208fea5a8a74da9cacf469c9846f090da7d528a44ad3d9e75180fd5acf38981ab4f5a7df1e62c274d7ce1477a8d5b636c6cbb01a7a38

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB2B/bSqz8P:sxX7QnxrloE5dpUpdbVz8P

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks