General

  • Target

    66ea44f565b503f2a5239c0f04d4076f2fa92f4cdf1ebbfd0cc621bac0b5ca79.exe

  • Size

    1.6MB

  • Sample

    241114-e9xbbavcng

  • MD5

    9e2c974b38ff3d17ea39620c86e02add

  • SHA1

    d92dddb091edd9c38091856e0bb9068e542d93d9

  • SHA256

    66ea44f565b503f2a5239c0f04d4076f2fa92f4cdf1ebbfd0cc621bac0b5ca79

  • SHA512

    fd03b3d1316402f1975fbd6bafc65d0dce0484f2f69eac1e4533db02b3cca7592004863118630a5bc94b7adfb584b57eb2e535c097e325ebc5d4afd910e1e66d

  • SSDEEP

    12288:PDAQXSA1yUahfz5b/+UYVAp4s0Eddnw4Cu9jBDifOduwBz5OWcUM:fXSAMZlzVmT10wJu9jBzuwBFO7

Malware Config

Targets

    • Target

      66ea44f565b503f2a5239c0f04d4076f2fa92f4cdf1ebbfd0cc621bac0b5ca79.exe

    • Size

      1.6MB

    • MD5

      9e2c974b38ff3d17ea39620c86e02add

    • SHA1

      d92dddb091edd9c38091856e0bb9068e542d93d9

    • SHA256

      66ea44f565b503f2a5239c0f04d4076f2fa92f4cdf1ebbfd0cc621bac0b5ca79

    • SHA512

      fd03b3d1316402f1975fbd6bafc65d0dce0484f2f69eac1e4533db02b3cca7592004863118630a5bc94b7adfb584b57eb2e535c097e325ebc5d4afd910e1e66d

    • SSDEEP

      12288:PDAQXSA1yUahfz5b/+UYVAp4s0Eddnw4Cu9jBDifOduwBz5OWcUM:fXSAMZlzVmT10wJu9jBzuwBFO7

    • Renames multiple (254) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks