General

  • Target

    eb358259962d876053618a3fdaaabbd48d0daa875414aeef27cd0dfe559cadbb.exe

  • Size

    3.8MB

  • Sample

    250119-yjtmaasqcx

  • MD5

    e4c9197a71084cbd81304631c0b1672e

  • SHA1

    660ebe724066678b6b5b82e50bbe03e740e667e3

  • SHA256

    eb358259962d876053618a3fdaaabbd48d0daa875414aeef27cd0dfe559cadbb

  • SHA512

    dcc1cc2c9a757b3d32c6d74dce86d07e8382e87103a0fb41449d3de67aa84da21816a3f02012f2b9d16daae20c9c32572888eb0017a9a998a6329e30ebf2a947

  • SSDEEP

    98304:AA49ku6qKxEDvVI6QT/PVJ0FTnvmj8nKxJPpJwl9:A96qApLPVJOQ8nK5ul9

Malware Config

Targets

    • Target

      eb358259962d876053618a3fdaaabbd48d0daa875414aeef27cd0dfe559cadbb.exe

    • Size

      3.8MB

    • MD5

      e4c9197a71084cbd81304631c0b1672e

    • SHA1

      660ebe724066678b6b5b82e50bbe03e740e667e3

    • SHA256

      eb358259962d876053618a3fdaaabbd48d0daa875414aeef27cd0dfe559cadbb

    • SHA512

      dcc1cc2c9a757b3d32c6d74dce86d07e8382e87103a0fb41449d3de67aa84da21816a3f02012f2b9d16daae20c9c32572888eb0017a9a998a6329e30ebf2a947

    • SSDEEP

      98304:AA49ku6qKxEDvVI6QT/PVJ0FTnvmj8nKxJPpJwl9:A96qApLPVJOQ8nK5ul9

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks