General

  • Target

    2a33d8d6c52595e728789cc9f29a9015f2f8f87813e4eb6d1c7895019f5a4b88

  • Size

    1.3MB

  • Sample

    250115-1pasgaxnan

  • MD5

    3dc9eca2ade85c97a228fe19975455cd

  • SHA1

    94fc1bf64e5fed933eee71c78be1d6ded46ef30b

  • SHA256

    2a33d8d6c52595e728789cc9f29a9015f2f8f87813e4eb6d1c7895019f5a4b88

  • SHA512

    64015b6c600c06e0bfcdd5a484ddb387bb12447dee9d6d895d9ac33239e4ff120f9252bfc62457e0b491070c207b0995bd2793a869e3cf99497d0c3682d7ff13

  • SSDEEP

    24576:9IXgCWSpRyndSJVDsVu5unzqWvX1WSkQ/7Gb8NLEbeZ:sWSjaSJlsQuzqW/1PkQ/qoLEw

Malware Config

Targets

    • Target

      2a33d8d6c52595e728789cc9f29a9015f2f8f87813e4eb6d1c7895019f5a4b88

    • Size

      1.3MB

    • MD5

      3dc9eca2ade85c97a228fe19975455cd

    • SHA1

      94fc1bf64e5fed933eee71c78be1d6ded46ef30b

    • SHA256

      2a33d8d6c52595e728789cc9f29a9015f2f8f87813e4eb6d1c7895019f5a4b88

    • SHA512

      64015b6c600c06e0bfcdd5a484ddb387bb12447dee9d6d895d9ac33239e4ff120f9252bfc62457e0b491070c207b0995bd2793a869e3cf99497d0c3682d7ff13

    • SSDEEP

      24576:9IXgCWSpRyndSJVDsVu5unzqWvX1WSkQ/7Gb8NLEbeZ:sWSjaSJlsQuzqW/1PkQ/qoLEw

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks