General

  • Target

    2dd98743cb9c466a3950d7eacdc89cbd7631652bf5d1bece84253f6ced313b04

  • Size

    2.6MB

  • Sample

    241113-znt92syjgs

  • MD5

    950ded47906be462a5d1aa47ecac408e

  • SHA1

    83540a447ede38edefb3eecc5760163a737af018

  • SHA256

    2dd98743cb9c466a3950d7eacdc89cbd7631652bf5d1bece84253f6ced313b04

  • SHA512

    41992e9253486228f0b338af189d859039eb53df9ddd02732c5139c9f2a32d08dc155e617183b5dbfcda3b3750b5549d390687e7b608b59c8acad7c3b63a432c

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bSq:sxX7QnxrloE5dpUpBbV

Malware Config

Targets

    • Target

      2dd98743cb9c466a3950d7eacdc89cbd7631652bf5d1bece84253f6ced313b04

    • Size

      2.6MB

    • MD5

      950ded47906be462a5d1aa47ecac408e

    • SHA1

      83540a447ede38edefb3eecc5760163a737af018

    • SHA256

      2dd98743cb9c466a3950d7eacdc89cbd7631652bf5d1bece84253f6ced313b04

    • SHA512

      41992e9253486228f0b338af189d859039eb53df9ddd02732c5139c9f2a32d08dc155e617183b5dbfcda3b3750b5549d390687e7b608b59c8acad7c3b63a432c

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBiB/bSq:sxX7QnxrloE5dpUpBbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks