General

  • Target

    eb75fc5d2f304210a4fbfd535a88f3206e9558daf3ca9d886a47348ec824d166

  • Size

    1.7MB

  • Sample

    250115-tave1aymgm

  • MD5

    aa62428f5125bf6664c9aee32722754c

  • SHA1

    2c7f471ea7b52a98b05e51500336101c2d929b4b

  • SHA256

    eb75fc5d2f304210a4fbfd535a88f3206e9558daf3ca9d886a47348ec824d166

  • SHA512

    b20100ff2a75fcf28cf02c4a47f7a2b6ec4e06abdeda24f29dc498c0447e3059d06d21958c51380c03dbfea5d060afc3f778aeb935a3b3682541c0d7213ed083

  • SSDEEP

    24576:PWd7S8NK3oYpkTcDvebZI7LrS/85RkVt7jSSkQ/7Gb8NLEbeZ:PKxNupkTcKb4rSUfkVFj7kQ/qoLEw

Malware Config

Targets

    • Target

      eb75fc5d2f304210a4fbfd535a88f3206e9558daf3ca9d886a47348ec824d166

    • Size

      1.7MB

    • MD5

      aa62428f5125bf6664c9aee32722754c

    • SHA1

      2c7f471ea7b52a98b05e51500336101c2d929b4b

    • SHA256

      eb75fc5d2f304210a4fbfd535a88f3206e9558daf3ca9d886a47348ec824d166

    • SHA512

      b20100ff2a75fcf28cf02c4a47f7a2b6ec4e06abdeda24f29dc498c0447e3059d06d21958c51380c03dbfea5d060afc3f778aeb935a3b3682541c0d7213ed083

    • SSDEEP

      24576:PWd7S8NK3oYpkTcDvebZI7LrS/85RkVt7jSSkQ/7Gb8NLEbeZ:PKxNupkTcKb4rSUfkVFj7kQ/qoLEw

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks