General

  • Target

    43f470212ecdceb08dad965f874f8ceaa18201842560c7a8485cd9d07d8b0501

  • Size

    2.0MB

  • Sample

    250119-w6wdaaznht

  • MD5

    131fd73519d3743dc6c34c675f22639f

  • SHA1

    962e50a339389bf3a839db90c2121344eda9950e

  • SHA256

    43f470212ecdceb08dad965f874f8ceaa18201842560c7a8485cd9d07d8b0501

  • SHA512

    be0001a5ff2d3388533dbc51198672c81059f4bc3211c7d468ce0aeac6829de8bfb1b47bf0b8457d019613a9f2b52cbbf5d4debde9b328cb0e599d7e60d7def9

  • SSDEEP

    24576:Kzs3yGXRwd14jK42aMQDJoAOM08/85RkptVIJqQsqjnhMgeiCl7G0nehbGZpbD:eORwdG2NcOMjUfkptVxMDmg27RnWGj

Malware Config

Targets

    • Target

      43f470212ecdceb08dad965f874f8ceaa18201842560c7a8485cd9d07d8b0501

    • Size

      2.0MB

    • MD5

      131fd73519d3743dc6c34c675f22639f

    • SHA1

      962e50a339389bf3a839db90c2121344eda9950e

    • SHA256

      43f470212ecdceb08dad965f874f8ceaa18201842560c7a8485cd9d07d8b0501

    • SHA512

      be0001a5ff2d3388533dbc51198672c81059f4bc3211c7d468ce0aeac6829de8bfb1b47bf0b8457d019613a9f2b52cbbf5d4debde9b328cb0e599d7e60d7def9

    • SSDEEP

      24576:Kzs3yGXRwd14jK42aMQDJoAOM08/85RkptVIJqQsqjnhMgeiCl7G0nehbGZpbD:eORwdG2NcOMjUfkptVxMDmg27RnWGj

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks