General

  • Target

    4810c7f8f0f671a786aed904df002278757a509691f2af4ebd10b8430e80889e

  • Size

    1.7MB

  • Sample

    250115-1pa38sxnar

  • MD5

    4fec3ff026f62a8cd0de54276e5088f5

  • SHA1

    a6ce406a7928ae242b570a272a8c3c05021bbfd2

  • SHA256

    4810c7f8f0f671a786aed904df002278757a509691f2af4ebd10b8430e80889e

  • SHA512

    d8d6fa6567fd98886b59604c7ab63c4a1e611bb553452f9d645afaa5c431e9e877f83bb355ae3d495cf20757fe4df586c069ed00a1b8df58b3880be5ef37a495

  • SSDEEP

    49152:OKxNuLkTcKb4rSUfkVFjtaB0zj0yjoB2:XfuLkT5NUQOB2Yyjl

Malware Config

Targets

    • Target

      4810c7f8f0f671a786aed904df002278757a509691f2af4ebd10b8430e80889e

    • Size

      1.7MB

    • MD5

      4fec3ff026f62a8cd0de54276e5088f5

    • SHA1

      a6ce406a7928ae242b570a272a8c3c05021bbfd2

    • SHA256

      4810c7f8f0f671a786aed904df002278757a509691f2af4ebd10b8430e80889e

    • SHA512

      d8d6fa6567fd98886b59604c7ab63c4a1e611bb553452f9d645afaa5c431e9e877f83bb355ae3d495cf20757fe4df586c069ed00a1b8df58b3880be5ef37a495

    • SSDEEP

      49152:OKxNuLkTcKb4rSUfkVFjtaB0zj0yjoB2:XfuLkT5NUQOB2Yyjl

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks