General

  • Target

    1b625bd2cd691a64142cf61a397715136496838bc32f189f2c5d8b4435c6a5fa

  • Size

    1.8MB

  • Sample

    250115-1pasgawlez

  • MD5

    9ca66fb65a5f9088b13aab6f7fab8178

  • SHA1

    27b696d1ac99909c3571885fd807c08dd9e024cc

  • SHA256

    1b625bd2cd691a64142cf61a397715136496838bc32f189f2c5d8b4435c6a5fa

  • SHA512

    6ce068011ea2f3547a19bc0804b9a0481b438c03409e242e2b57729cb5c18384d0ffd43e907561714d5830ef0ff2dd32d360474e6dcb8c119d45f76e20ce62e5

  • SSDEEP

    49152:Sx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAFaB0zj0yjoB2:SvbjVkjjCAzJFB2Yyjl

Malware Config

Targets

    • Target

      1b625bd2cd691a64142cf61a397715136496838bc32f189f2c5d8b4435c6a5fa

    • Size

      1.8MB

    • MD5

      9ca66fb65a5f9088b13aab6f7fab8178

    • SHA1

      27b696d1ac99909c3571885fd807c08dd9e024cc

    • SHA256

      1b625bd2cd691a64142cf61a397715136496838bc32f189f2c5d8b4435c6a5fa

    • SHA512

      6ce068011ea2f3547a19bc0804b9a0481b438c03409e242e2b57729cb5c18384d0ffd43e907561714d5830ef0ff2dd32d360474e6dcb8c119d45f76e20ce62e5

    • SSDEEP

      49152:Sx5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAFaB0zj0yjoB2:SvbjVkjjCAzJFB2Yyjl

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks