General

  • Target

    a82a6279b3eae93c9e5aa08a7462cbd2d7ecf77d37ed6ee5e1b110258ca8cce3.exe

  • Size

    4.4MB

  • Sample

    241118-c4678awdla

  • MD5

    03a88792698a8ff709514257d24109a1

  • SHA1

    3bcd3bca1d2f6691f736abac76a4e20638fb539a

  • SHA256

    a82a6279b3eae93c9e5aa08a7462cbd2d7ecf77d37ed6ee5e1b110258ca8cce3

  • SHA512

    6ac81cb56505c426fa7c6567c4ad457affde52eb242f21b5eb14f3ddfb159743d38fda8ed4700b2b904ab574d734ffb6f457a82cd16962d445c8ede9b5a4b8fb

  • SSDEEP

    24576:h7VFJyqKTopu73W/bpbVqfubl6h0lhSMXlAu1t+ALuczsEVZ3V0aoftvZ4:bFwgu7mTpbLQuvPM4ZF0aw

Malware Config

Targets

    • Target

      a82a6279b3eae93c9e5aa08a7462cbd2d7ecf77d37ed6ee5e1b110258ca8cce3.exe

    • Size

      4.4MB

    • MD5

      03a88792698a8ff709514257d24109a1

    • SHA1

      3bcd3bca1d2f6691f736abac76a4e20638fb539a

    • SHA256

      a82a6279b3eae93c9e5aa08a7462cbd2d7ecf77d37ed6ee5e1b110258ca8cce3

    • SHA512

      6ac81cb56505c426fa7c6567c4ad457affde52eb242f21b5eb14f3ddfb159743d38fda8ed4700b2b904ab574d734ffb6f457a82cd16962d445c8ede9b5a4b8fb

    • SSDEEP

      24576:h7VFJyqKTopu73W/bpbVqfubl6h0lhSMXlAu1t+ALuczsEVZ3V0aoftvZ4:bFwgu7mTpbLQuvPM4ZF0aw

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses Microsoft Outlook profiles

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks