General

  • Target

    9cffb98bad51973b5f006ce490a8827b8fd0a2d71257eb23eae45b712771d543.exe

  • Size

    2.6MB

  • Sample

    241113-zgd99ayfjb

  • MD5

    ba5bc323170a5ccd7eeb7aeb37bbae71

  • SHA1

    f9a920985ccc330ef85b11dbfdfbeccd388ff2e1

  • SHA256

    9cffb98bad51973b5f006ce490a8827b8fd0a2d71257eb23eae45b712771d543

  • SHA512

    c39cec0253a87f3be5119f96701ff65c96b1dcf9e83db09de124158c909a4bb9854b2b49993a16026200faeb66e05a30e514b85f306c4cb9be863f1f2d382080

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bS2:sxX7QnxrloE5dpUp0bX

Malware Config

Targets

    • Target

      9cffb98bad51973b5f006ce490a8827b8fd0a2d71257eb23eae45b712771d543.exe

    • Size

      2.6MB

    • MD5

      ba5bc323170a5ccd7eeb7aeb37bbae71

    • SHA1

      f9a920985ccc330ef85b11dbfdfbeccd388ff2e1

    • SHA256

      9cffb98bad51973b5f006ce490a8827b8fd0a2d71257eb23eae45b712771d543

    • SHA512

      c39cec0253a87f3be5119f96701ff65c96b1dcf9e83db09de124158c909a4bb9854b2b49993a16026200faeb66e05a30e514b85f306c4cb9be863f1f2d382080

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBDB/bS2:sxX7QnxrloE5dpUp0bX

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks