General

  • Target

    b2f3d7ebdc0579c75240a8dc69dcd9e42561db85f1db01165483c549d2e62770N.exe

  • Size

    99KB

  • Sample

    250119-qme93azlgn

  • MD5

    65c6101b3a0b101452f0bcd37506ff20

  • SHA1

    579fc2e8da5931f9938c85ab5e8201ceedf95058

  • SHA256

    b2f3d7ebdc0579c75240a8dc69dcd9e42561db85f1db01165483c549d2e62770

  • SHA512

    cca642a3643b6dd8ceffb887037877ad2e3087640cacdef2ba43e1e1a3a660de8093c603647ddfce4406d905cb8236fea6ba8d6402db68e7aa1b5f88ab9dde81

  • SSDEEP

    3072:ZWrKR8W9Mj6yhPyKfXtAGsKG3ERrjjNB3+IQOdPnto8:GjYKlAhUBVB3pQOd/td

Malware Config

Targets

    • Target

      b2f3d7ebdc0579c75240a8dc69dcd9e42561db85f1db01165483c549d2e62770N.exe

    • Size

      99KB

    • MD5

      65c6101b3a0b101452f0bcd37506ff20

    • SHA1

      579fc2e8da5931f9938c85ab5e8201ceedf95058

    • SHA256

      b2f3d7ebdc0579c75240a8dc69dcd9e42561db85f1db01165483c549d2e62770

    • SHA512

      cca642a3643b6dd8ceffb887037877ad2e3087640cacdef2ba43e1e1a3a660de8093c603647ddfce4406d905cb8236fea6ba8d6402db68e7aa1b5f88ab9dde81

    • SSDEEP

      3072:ZWrKR8W9Mj6yhPyKfXtAGsKG3ERrjjNB3+IQOdPnto8:GjYKlAhUBVB3pQOd/td

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks