Resubmissions

15-11-2024 00:15

241115-akebzsvmgt 8

15-11-2024 00:12

241115-ahlchsvmfv 6

15-11-2024 00:11

241115-agyapavmex 3

15-11-2024 00:08

241115-ae8zeavmdt 7

General

  • Target

    SynapseBootstrapper.exe

  • Size

    85KB

  • Sample

    241115-ae8zeavmdt

  • MD5

    88d248ab797cd3bb5326d9bcb9c7059a

  • SHA1

    2c93e4a9316b479dc2e8960c5550a63e95108d67

  • SHA256

    ecb47d796f67b6282502c20373465b15b67328b0eda4e0f9da42e14aff83bbed

  • SHA512

    e993f6d6bcae835b18c537c090fca5008b12bf7bb50c479dfcba44ffaddc5141c4e9721f8e61f0faf18d264900924459dd6a923facf9d82bf711982a2e404fba

  • SSDEEP

    384:qpkJsuoIaoabgzltzVEIVpKjndlrZtbD7Gsp8N5F5+2/tKrD7Gsp8N5F5+2/tKkX:qWJHa7aQjzTGsU5R4GsU5R+RGq75RU

Malware Config

Targets

    • Target

      SynapseBootstrapper.exe

    • Size

      85KB

    • MD5

      88d248ab797cd3bb5326d9bcb9c7059a

    • SHA1

      2c93e4a9316b479dc2e8960c5550a63e95108d67

    • SHA256

      ecb47d796f67b6282502c20373465b15b67328b0eda4e0f9da42e14aff83bbed

    • SHA512

      e993f6d6bcae835b18c537c090fca5008b12bf7bb50c479dfcba44ffaddc5141c4e9721f8e61f0faf18d264900924459dd6a923facf9d82bf711982a2e404fba

    • SSDEEP

      384:qpkJsuoIaoabgzltzVEIVpKjndlrZtbD7Gsp8N5F5+2/tKrD7Gsp8N5F5+2/tKkX:qWJHa7aQjzTGsU5R4GsU5R+RGq75RU

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks