General

  • Target

    SPOILER_hwidspoof.bat

  • Size

    46KB

  • Sample

    241114-nabp1aycpf

  • MD5

    158890f2796b66ed34cc4ff7afe05581

  • SHA1

    c17c1e37452a6220a701537590ea512870f69ed6

  • SHA256

    9f25ae0485bb8b3f880ab9275552064eacf9ffc644d285dfa5d40c9689e219f8

  • SHA512

    c4489e7713895ef0423cb1e4bf005e0b5ea148805713645de95acff00d8c784bdbdd4781566fd3ce06d9a5ea13fdfa31a8ff7573a8cd78c724cd666d6853a7ab

  • SSDEEP

    384:Mi+SMS8Sn16d/s16JijVAJ9OSU5RCn3I3k4L1oPunRz+eV5pK/F23aKVed+NUSe+:xKSBL1oP6Rz+Enfdh9YL8oPba

Malware Config

Targets

    • Target

      SPOILER_hwidspoof.bat

    • Size

      46KB

    • MD5

      158890f2796b66ed34cc4ff7afe05581

    • SHA1

      c17c1e37452a6220a701537590ea512870f69ed6

    • SHA256

      9f25ae0485bb8b3f880ab9275552064eacf9ffc644d285dfa5d40c9689e219f8

    • SHA512

      c4489e7713895ef0423cb1e4bf005e0b5ea148805713645de95acff00d8c784bdbdd4781566fd3ce06d9a5ea13fdfa31a8ff7573a8cd78c724cd666d6853a7ab

    • SSDEEP

      384:Mi+SMS8Sn16d/s16JijVAJ9OSU5RCn3I3k4L1oPunRz+eV5pK/F23aKVed+NUSe+:xKSBL1oP6Rz+Enfdh9YL8oPba

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks