General
-
Target
649094066fe12b92218e5f02f69e1a033d7a7e3303972af8a12bdbd76947466d
-
Size
5.1MB
-
Sample
241121-jk28gszmb1
-
MD5
79ea00621cbe28699d5a570f8dbd1a03
-
SHA1
df0f63566bdec5ce2c27b2c7b99d71d9202241b1
-
SHA256
649094066fe12b92218e5f02f69e1a033d7a7e3303972af8a12bdbd76947466d
-
SHA512
8562f68c7e7fce3f54b92276baeead6f93dfb8d3d84a0627481333c319c52b422dee32ef2bc71dd2ea6e0bbb9a73fd438eb9bb9a0584346945c5af4c04b093e2
-
SSDEEP
98304:80NFx6666666666666666666666666666666x666666666666666fwwwwwwwwwwM:NPMki6zio75L3pf3dedO4keCIwkoYbgs
Malware Config
Targets
-
-
Target
649094066fe12b92218e5f02f69e1a033d7a7e3303972af8a12bdbd76947466d
-
Size
5.1MB
-
MD5
79ea00621cbe28699d5a570f8dbd1a03
-
SHA1
df0f63566bdec5ce2c27b2c7b99d71d9202241b1
-
SHA256
649094066fe12b92218e5f02f69e1a033d7a7e3303972af8a12bdbd76947466d
-
SHA512
8562f68c7e7fce3f54b92276baeead6f93dfb8d3d84a0627481333c319c52b422dee32ef2bc71dd2ea6e0bbb9a73fd438eb9bb9a0584346945c5af4c04b093e2
-
SSDEEP
98304:80NFx6666666666666666666666666666666x666666666666666fwwwwwwwwwwM:NPMki6zio75L3pf3dedO4keCIwkoYbgs
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Subvert Trust Controls
1Install Root Certificate
1Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1