General

  • Target

    ed172a57256b3622432bf808538ee3ecd157039a2170c0c6861e4b8dc2e7a841.exe

  • Size

    2.0MB

  • Sample

    250119-w6hgesznfz

  • MD5

    95603bda1bf43166ec417332721c13e0

  • SHA1

    8c064aa2e85c7d17a245fad7d6d137cb672dbeff

  • SHA256

    ed172a57256b3622432bf808538ee3ecd157039a2170c0c6861e4b8dc2e7a841

  • SHA512

    201f3c6d0f19a3032524628055f08471e93b8d824024b1c350e91159b0e9338c52d531f86c154a7aabf4b53d4ffe516aa769f199ed8f5fcbec47c97b095900bc

  • SSDEEP

    49152:JORwdG2NcOMjUfkptVxNf9Ckt7c20+9qNxUWK:JYwdGVjUu5NfEkKK90K

Malware Config

Targets

    • Target

      ed172a57256b3622432bf808538ee3ecd157039a2170c0c6861e4b8dc2e7a841.exe

    • Size

      2.0MB

    • MD5

      95603bda1bf43166ec417332721c13e0

    • SHA1

      8c064aa2e85c7d17a245fad7d6d137cb672dbeff

    • SHA256

      ed172a57256b3622432bf808538ee3ecd157039a2170c0c6861e4b8dc2e7a841

    • SHA512

      201f3c6d0f19a3032524628055f08471e93b8d824024b1c350e91159b0e9338c52d531f86c154a7aabf4b53d4ffe516aa769f199ed8f5fcbec47c97b095900bc

    • SSDEEP

      49152:JORwdG2NcOMjUfkptVxNf9Ckt7c20+9qNxUWK:JYwdGVjUu5NfEkKK90K

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks