General

  • Target

    T.zip

  • Size

    54.5MB

  • Sample

    250115-svy39awqex

  • MD5

    1aeeb2ecd5f8a209378f16db1c7b31e5

  • SHA1

    62d389b673ee276aa2fae1d6c56ff7c2fffb4b4c

  • SHA256

    11dd811962bb07b4c53ba67af5fd33f94829b30fb6d25bf5f8e3653e81c2b443

  • SHA512

    ccc888c710bd3c45fdd3e9f2750afc596e8a325eced37588e739c0b543dfe42480fe286a85d7484167c8cb31e32d064f47add1f9a52f0741aec4f4a01aea3be7

  • SSDEEP

    786432:g8aHAcpexFhsFUZA5ukttvSPt9IPa5R2hv35gN+Ucda/YnoS6pHDOz/TTL+A9rqR:/DxA5npS0iQgN+Bw/UFSDeX+A90t

Malware Config

Targets

    • Target

      CreepVoidStealer.exe

    • Size

      42.4MB

    • MD5

      b8ca4e194c2d2cc500ae61e4e4944181

    • SHA1

      52baae0890326c0ce597b4c040239cef7c130d34

    • SHA256

      7e73cc59571ea11e472917e91ab9b847c26ace4b33c963ff0fe7393d86ad8316

    • SHA512

      f85ce6e7f68c5d416ae1c344125f9fc711ea2b20f7a81f81b8525e6ca99967aa04aa4b3b0c7e2cd33bbf74668b631ec7a2499a8ce83ba25b9b4667093f131102

    • SSDEEP

      196608:LPRT7Qg/52Fion+4RIxWwxVSuINoK43MOYFzD9xFtPE2p:LPZ73kSxWwWuYon8OYz

    • Enumerates VirtualBox DLL files

    • Looks for VirtualBox drivers on disk

    • Looks for VirtualBox executables on disk

    • Looks for VMWare drivers on disk

    • Uses browser remote debugging

      Can be used control the browser and steal sensitive information such as credentials and session cookies.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Target

      UnityCrashHandler64.exe

    • Size

      1.1MB

    • MD5

      a74357a8f5fb404a994515723e2f626c

    • SHA1

      a4bee16a64c4d4c4848a1463ae7309e445de54fc

    • SHA256

      f113e7ced1096b4f079b4e9fcaf33c99aea52b04c0ba122a939ea3271e1ab4b4

    • SHA512

      faa0f046c5a4fe673836279d44ebbe16a06c4fd760b2777f9082e24c092639dc6a8d8554d9a1abbe73dd15199cb762fdb7a69a5133ded26f4152523c5329de29

    • SSDEEP

      12288:YLrzkew1ztlMKXkXepgKHBkd0eqZA6E2xg3neo/YofF9n06VJQfz2fzAy:YLvkx1BlXhhkd0W6ryekFu6V+z+zAy

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks