General

  • Target

    b166dd266b42d91187967bab486548126ff18da8e00c5bc867cfeb6b37bb7b04.exe

  • Size

    2.6MB

  • Sample

    241113-zm36kaslcl

  • MD5

    da7e0d696af80188e86c6d1c73cb0dfe

  • SHA1

    4854f4c7ce80f0ff5a5531e477ce223840deda46

  • SHA256

    b166dd266b42d91187967bab486548126ff18da8e00c5bc867cfeb6b37bb7b04

  • SHA512

    a4096abf0d4500e29984fc3bf3acc26908fb517df5d2c14db7ddc83e0f8cfadd2a52937665289c1a0053bb5e9431cf3349a1824c3440634d52f51b1b41592d2e

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB3B/bSC:sxX7QnxrloE5dpUpAbl

Malware Config

Targets

    • Target

      b166dd266b42d91187967bab486548126ff18da8e00c5bc867cfeb6b37bb7b04.exe

    • Size

      2.6MB

    • MD5

      da7e0d696af80188e86c6d1c73cb0dfe

    • SHA1

      4854f4c7ce80f0ff5a5531e477ce223840deda46

    • SHA256

      b166dd266b42d91187967bab486548126ff18da8e00c5bc867cfeb6b37bb7b04

    • SHA512

      a4096abf0d4500e29984fc3bf3acc26908fb517df5d2c14db7ddc83e0f8cfadd2a52937665289c1a0053bb5e9431cf3349a1824c3440634d52f51b1b41592d2e

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LB3B/bSC:sxX7QnxrloE5dpUpAbl

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks