General

  • Target

    c691fd9af5fca8f8b64685ee98a70c5b7eb66da01cf1e3c3464e979a1d83d3b6

  • Size

    1.3MB

  • Sample

    250119-w6wdaaznhv

  • MD5

    e8b217335da4778cf9247986eaf315ef

  • SHA1

    c7f9b6ddc58f39ccc21f9d0baf985269fd00143d

  • SHA256

    c691fd9af5fca8f8b64685ee98a70c5b7eb66da01cf1e3c3464e979a1d83d3b6

  • SHA512

    41a7a988ed968e006366cb2ad2d2e5ee6c05ceeca1b3a93f2fc1a07efe01ffe84aefe848915ab7d5651320be19ccd1873bf61c5dd461f91e18b37d6e5effd59a

  • SSDEEP

    12288:f09B+VKMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:f09BISkQ/7Gb8NLEbeZ

Malware Config

Targets

    • Target

      c691fd9af5fca8f8b64685ee98a70c5b7eb66da01cf1e3c3464e979a1d83d3b6

    • Size

      1.3MB

    • MD5

      e8b217335da4778cf9247986eaf315ef

    • SHA1

      c7f9b6ddc58f39ccc21f9d0baf985269fd00143d

    • SHA256

      c691fd9af5fca8f8b64685ee98a70c5b7eb66da01cf1e3c3464e979a1d83d3b6

    • SHA512

      41a7a988ed968e006366cb2ad2d2e5ee6c05ceeca1b3a93f2fc1a07efe01ffe84aefe848915ab7d5651320be19ccd1873bf61c5dd461f91e18b37d6e5effd59a

    • SSDEEP

      12288:f09B+VKMTmkJR4Do07Y86gw5CtCjX+NLuFhNpBeZT3X:f09BISkQ/7Gb8NLEbeZ

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks