General

  • Target

    f0cc8caede9ea7ee139695765b20caf6cf7d7e366202d66441d69409b077cf94.exe

  • Size

    2.6MB

  • Sample

    241113-zd3tfaygnm

  • MD5

    51a990df9b9629f32c3d4ee06a28b836

  • SHA1

    3131625118329b5075dff0dca50f39c5aec31380

  • SHA256

    f0cc8caede9ea7ee139695765b20caf6cf7d7e366202d66441d69409b077cf94

  • SHA512

    c568005a99206619bc541461bf5c80d1a438302599a2f19988e0180aada961f434bd2f84127245fa6961c56f4b26755f2dbfde0234cf1773d8759746c13b3489

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSW:sxX7QnxrloE5dpUplbP

Malware Config

Targets

    • Target

      f0cc8caede9ea7ee139695765b20caf6cf7d7e366202d66441d69409b077cf94.exe

    • Size

      2.6MB

    • MD5

      51a990df9b9629f32c3d4ee06a28b836

    • SHA1

      3131625118329b5075dff0dca50f39c5aec31380

    • SHA256

      f0cc8caede9ea7ee139695765b20caf6cf7d7e366202d66441d69409b077cf94

    • SHA512

      c568005a99206619bc541461bf5c80d1a438302599a2f19988e0180aada961f434bd2f84127245fa6961c56f4b26755f2dbfde0234cf1773d8759746c13b3489

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBWB/bSW:sxX7QnxrloE5dpUplbP

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks