General

  • Target

    b8f0568e29c6575d191d05c73e0537dfac0fd0fa1cb53d55080c8710ef3461db.exe

  • Size

    622KB

  • Sample

    250119-yg2j4stldq

  • MD5

    f45bb940a93b2b1c260e178894c53243

  • SHA1

    1235a317ab400509259e02584c580ee263a8b457

  • SHA256

    b8f0568e29c6575d191d05c73e0537dfac0fd0fa1cb53d55080c8710ef3461db

  • SHA512

    71394c70d57908f0d014f2cb0bcde29f83814658fe6811b7d5b12b96371dbf0b1ba6a68b43b7641e78e5f4e1499adcf35230cbd92a704656268fb56fbd91cf42

  • SSDEEP

    12288:UuyGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPhg:UuVt/sBlDqgZQd6XKtiMJYiPUg

Malware Config

Targets

    • Target

      b8f0568e29c6575d191d05c73e0537dfac0fd0fa1cb53d55080c8710ef3461db.exe

    • Size

      622KB

    • MD5

      f45bb940a93b2b1c260e178894c53243

    • SHA1

      1235a317ab400509259e02584c580ee263a8b457

    • SHA256

      b8f0568e29c6575d191d05c73e0537dfac0fd0fa1cb53d55080c8710ef3461db

    • SHA512

      71394c70d57908f0d014f2cb0bcde29f83814658fe6811b7d5b12b96371dbf0b1ba6a68b43b7641e78e5f4e1499adcf35230cbd92a704656268fb56fbd91cf42

    • SSDEEP

      12288:UuyGt/sB1KcYmqgZvAMlUoUjG+YKtMfnkOeZb5JYiNAgAPhg:UuVt/sBlDqgZQd6XKtiMJYiPUg

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks