General

  • Target

    f8db4198f8cf6abe0dddf4fcb1fb2833c957c3dd4fbd1c4f4abbbadb2e6a83a0.exe

  • Size

    2.6MB

  • Sample

    241113-zf9d1ayjax

  • MD5

    a9da9d908794745dd04f24da858f30d7

  • SHA1

    15a5e690ccc7a28f3b6ee735bd7e8f810d3c0084

  • SHA256

    f8db4198f8cf6abe0dddf4fcb1fb2833c957c3dd4fbd1c4f4abbbadb2e6a83a0

  • SHA512

    bc339fd07a015b394110c1b91bfc35fa2fb50007882fa33327a7ccba1db194fce36873a28a38e1a9715c7d13f9caafec19a875ed35cef24aaa86d60b7192f82f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bSi:sxX7QnxrloE5dpUppb1

Malware Config

Targets

    • Target

      f8db4198f8cf6abe0dddf4fcb1fb2833c957c3dd4fbd1c4f4abbbadb2e6a83a0.exe

    • Size

      2.6MB

    • MD5

      a9da9d908794745dd04f24da858f30d7

    • SHA1

      15a5e690ccc7a28f3b6ee735bd7e8f810d3c0084

    • SHA256

      f8db4198f8cf6abe0dddf4fcb1fb2833c957c3dd4fbd1c4f4abbbadb2e6a83a0

    • SHA512

      bc339fd07a015b394110c1b91bfc35fa2fb50007882fa33327a7ccba1db194fce36873a28a38e1a9715c7d13f9caafec19a875ed35cef24aaa86d60b7192f82f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB+B/bSi:sxX7QnxrloE5dpUppb1

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks