General

  • Target

    cc5855b09a4e54e773e3a3da1e2f0b03a60c15a3a88d888fdb41b7f52176384d

  • Size

    1.7MB

  • Sample

    250115-1q4f6swmct

  • MD5

    a97d97d20485976f777850710faeeade

  • SHA1

    de50d92afc3e0b10c19b1b48a8a59f55f1430693

  • SHA256

    cc5855b09a4e54e773e3a3da1e2f0b03a60c15a3a88d888fdb41b7f52176384d

  • SHA512

    d4232d0aa2935af529cb088734012ab86880de615cfe263a6a68ebdf3e2e8eb1e6962e2a56353c5e83618614def4f2c8f6a7dcc1f413c7b11b1b73be24276879

  • SSDEEP

    24576:2Wd7S8NK3oYLkTcDvebZI7LrS/85RkVt7jesqjnhMgeiCl7G0nehbGZpbD:2KxNuLkTcKb4rSUfkVFjyDmg27RnWGj

Malware Config

Targets

    • Target

      cc5855b09a4e54e773e3a3da1e2f0b03a60c15a3a88d888fdb41b7f52176384d

    • Size

      1.7MB

    • MD5

      a97d97d20485976f777850710faeeade

    • SHA1

      de50d92afc3e0b10c19b1b48a8a59f55f1430693

    • SHA256

      cc5855b09a4e54e773e3a3da1e2f0b03a60c15a3a88d888fdb41b7f52176384d

    • SHA512

      d4232d0aa2935af529cb088734012ab86880de615cfe263a6a68ebdf3e2e8eb1e6962e2a56353c5e83618614def4f2c8f6a7dcc1f413c7b11b1b73be24276879

    • SSDEEP

      24576:2Wd7S8NK3oYLkTcDvebZI7LrS/85RkVt7jesqjnhMgeiCl7G0nehbGZpbD:2KxNuLkTcKb4rSUfkVFjyDmg27RnWGj

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks