General

  • Target

    f73fb911ba0e42083dfdaea5c9aa091f064d0ef4d796a3526a0642a0fdce7ff1.exe

  • Size

    2.6MB

  • Sample

    250115-3r1g1szqew

  • MD5

    64fb3f05ed8e71ea9d1282bb9c568cea

  • SHA1

    267cbc50ae28514ef1ca7a519107fa4f22cef81c

  • SHA256

    f73fb911ba0e42083dfdaea5c9aa091f064d0ef4d796a3526a0642a0fdce7ff1

  • SHA512

    cc56728fba84207cbe0c548bd071b4aa7cf0ba2c115372495c460f8fe947402a1b73ea803da735cf96a4b0dff4ec44ffd0da4194c6835f6a7792528838f7b0d9

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBAB/bSqS:sxX7QnxrloE5dpUpbbVS

Malware Config

Targets

    • Target

      f73fb911ba0e42083dfdaea5c9aa091f064d0ef4d796a3526a0642a0fdce7ff1.exe

    • Size

      2.6MB

    • MD5

      64fb3f05ed8e71ea9d1282bb9c568cea

    • SHA1

      267cbc50ae28514ef1ca7a519107fa4f22cef81c

    • SHA256

      f73fb911ba0e42083dfdaea5c9aa091f064d0ef4d796a3526a0642a0fdce7ff1

    • SHA512

      cc56728fba84207cbe0c548bd071b4aa7cf0ba2c115372495c460f8fe947402a1b73ea803da735cf96a4b0dff4ec44ffd0da4194c6835f6a7792528838f7b0d9

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBAB/bSqS:sxX7QnxrloE5dpUpbbVS

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks