General

  • Target

    40e39f746f0051996463a519402aa63ef182ca44cac6830820c4be376507c520

  • Size

    3.1MB

  • Sample

    241114-n4vpzasnfp

  • MD5

    f44e2ee9f49b3afc84c48c7c6a5606a2

  • SHA1

    f01478bd23f5b55438762b3022ae331b38ac0192

  • SHA256

    40e39f746f0051996463a519402aa63ef182ca44cac6830820c4be376507c520

  • SHA512

    394efd9e17943592dfe6f1af229c09db303f3a84616a2ec5d413094342cc3b7772b78083c3dde9b9e80e0d9cbd29c70dd2d1754a3aa8c55ea123aa6d1e4603f9

  • SSDEEP

    98304:GAJbF/eB26JB6+hafAQ2NFSrsf9qgMsIZ/JUFmRT2H:3GpafS0U9q0IFYz

Malware Config

Targets

    • Target

      40e39f746f0051996463a519402aa63ef182ca44cac6830820c4be376507c520

    • Size

      3.1MB

    • MD5

      f44e2ee9f49b3afc84c48c7c6a5606a2

    • SHA1

      f01478bd23f5b55438762b3022ae331b38ac0192

    • SHA256

      40e39f746f0051996463a519402aa63ef182ca44cac6830820c4be376507c520

    • SHA512

      394efd9e17943592dfe6f1af229c09db303f3a84616a2ec5d413094342cc3b7772b78083c3dde9b9e80e0d9cbd29c70dd2d1754a3aa8c55ea123aa6d1e4603f9

    • SSDEEP

      98304:GAJbF/eB26JB6+hafAQ2NFSrsf9qgMsIZ/JUFmRT2H:3GpafS0U9q0IFYz

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks