General

  • Target

    a4156dda11810012c497ed7aa5b1224397fd69fc24fd19ca010824d351eccbf1N.exe

  • Size

    899KB

  • Sample

    250119-ywwx6strdl

  • MD5

    df79750601e6aee67627b779d5b756b0

  • SHA1

    06f48319e992b72436b4fb0875d33fe19daccc21

  • SHA256

    a4156dda11810012c497ed7aa5b1224397fd69fc24fd19ca010824d351eccbf1

  • SHA512

    2ffc111bc449ba69da87ce4460d73bd6e1465858b37c068cd72b2fb29c6205ae394e5b4c6df440ecfca9a892c2afdb907991cffd81c90084aa70527ad52fef0a

  • SSDEEP

    24576:G0j08F7ggCkRXDaR/tjvZLvdyVvI9GOMyf2:G0j55BRXDaRJvZLvdIqMG2

Malware Config

Targets

    • Target

      a4156dda11810012c497ed7aa5b1224397fd69fc24fd19ca010824d351eccbf1N.exe

    • Size

      899KB

    • MD5

      df79750601e6aee67627b779d5b756b0

    • SHA1

      06f48319e992b72436b4fb0875d33fe19daccc21

    • SHA256

      a4156dda11810012c497ed7aa5b1224397fd69fc24fd19ca010824d351eccbf1

    • SHA512

      2ffc111bc449ba69da87ce4460d73bd6e1465858b37c068cd72b2fb29c6205ae394e5b4c6df440ecfca9a892c2afdb907991cffd81c90084aa70527ad52fef0a

    • SSDEEP

      24576:G0j08F7ggCkRXDaR/tjvZLvdyVvI9GOMyf2:G0j55BRXDaRJvZLvdIqMG2

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks