General

  • Target

    86c573e0deaee530276aa8d55e1f7e74e002e5651383ca50d36c902f1ab01393

  • Size

    1.8MB

  • Sample

    250115-tave1aymgl

  • MD5

    89a02795a977b4b141f7533c65913fe2

  • SHA1

    a72238108e91bfeff8f2b6bc5123efdbd4889c9b

  • SHA256

    86c573e0deaee530276aa8d55e1f7e74e002e5651383ca50d36c902f1ab01393

  • SHA512

    f47528d0e97abad766c6f60e087a4940d5494868a84515205206d98dcef97cc7d06d7e1e3c19624aeb901036dcb756054896732dbf9c893a7206a66c4ae1533c

  • SSDEEP

    49152:ox5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAGkQ/qoLEw:ovbjVkjjCAzJtqo4w

Malware Config

Targets

    • Target

      86c573e0deaee530276aa8d55e1f7e74e002e5651383ca50d36c902f1ab01393

    • Size

      1.8MB

    • MD5

      89a02795a977b4b141f7533c65913fe2

    • SHA1

      a72238108e91bfeff8f2b6bc5123efdbd4889c9b

    • SHA256

      86c573e0deaee530276aa8d55e1f7e74e002e5651383ca50d36c902f1ab01393

    • SHA512

      f47528d0e97abad766c6f60e087a4940d5494868a84515205206d98dcef97cc7d06d7e1e3c19624aeb901036dcb756054896732dbf9c893a7206a66c4ae1533c

    • SSDEEP

      49152:ox5SUW/cxUitIGLsF0nb+tJVYleAMz77+WAGkQ/qoLEw:ovbjVkjjCAzJtqo4w

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks