General

  • Target

    f8d231717253c841bb6adbf69751672e8887780bd1cf2464fdf1093d1c8b506aN.exe

  • Size

    2.6MB

  • Sample

    241113-ze4gcsskdr

  • MD5

    ee9c8e533b661f443d60292afc21de60

  • SHA1

    34c3d3c4576f54bdcc445353dcab28c2703d066b

  • SHA256

    f8d231717253c841bb6adbf69751672e8887780bd1cf2464fdf1093d1c8b506a

  • SHA512

    9d672b5e086e2cc18f22987621106b202166b89e903e4cb8ece04429c04093193e9b0b699037d9ef7c090b83c9132c50d9128f850ba79934cbc0169c40d5d252

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBoB/bS:sxX7QnxrloE5dpUpDb

Malware Config

Targets

    • Target

      f8d231717253c841bb6adbf69751672e8887780bd1cf2464fdf1093d1c8b506aN.exe

    • Size

      2.6MB

    • MD5

      ee9c8e533b661f443d60292afc21de60

    • SHA1

      34c3d3c4576f54bdcc445353dcab28c2703d066b

    • SHA256

      f8d231717253c841bb6adbf69751672e8887780bd1cf2464fdf1093d1c8b506a

    • SHA512

      9d672b5e086e2cc18f22987621106b202166b89e903e4cb8ece04429c04093193e9b0b699037d9ef7c090b83c9132c50d9128f850ba79934cbc0169c40d5d252

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBoB/bS:sxX7QnxrloE5dpUpDb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks