General

  • Target

    7458b749cd324d90ab6dcfb1d714194ba5e66d6c162de22c7480d7e30e96d3a2N.exe

  • Size

    2.6MB

  • Sample

    250119-wg178sypav

  • MD5

    54f96733fb099b320a3fd01ad3dc6610

  • SHA1

    7accc2241fbd074d2b432134eeda4da6406ce281

  • SHA256

    7458b749cd324d90ab6dcfb1d714194ba5e66d6c162de22c7480d7e30e96d3a2

  • SHA512

    24107ae5da2ac8bf197b6298449b4dae864a62f95384395fca4edce7a4a5ce8e72d01726afae4d5ad4849c84d7ccd1ed5462a9aed1e0ba8aedbc525232596514

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBmB/bSq:sxX7QnxrloE5dpUp5bV

Malware Config

Targets

    • Target

      7458b749cd324d90ab6dcfb1d714194ba5e66d6c162de22c7480d7e30e96d3a2N.exe

    • Size

      2.6MB

    • MD5

      54f96733fb099b320a3fd01ad3dc6610

    • SHA1

      7accc2241fbd074d2b432134eeda4da6406ce281

    • SHA256

      7458b749cd324d90ab6dcfb1d714194ba5e66d6c162de22c7480d7e30e96d3a2

    • SHA512

      24107ae5da2ac8bf197b6298449b4dae864a62f95384395fca4edce7a4a5ce8e72d01726afae4d5ad4849c84d7ccd1ed5462a9aed1e0ba8aedbc525232596514

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBmB/bSq:sxX7QnxrloE5dpUp5bV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks