General

  • Target

    1fe054d829bd7921d8e714eb7e8b3fdc320c1fd3cc58407778a513506f96a6aaN.exe

  • Size

    2.6MB

  • Sample

    250119-yx1yhstrhk

  • MD5

    1c90b7ea57dd7d6d53ea22b86fb950b0

  • SHA1

    d06b383f8b7c84e81ce0d4ed59e0aed2db7d4432

  • SHA256

    1fe054d829bd7921d8e714eb7e8b3fdc320c1fd3cc58407778a513506f96a6aa

  • SHA512

    8904cf0fa9e29cacaca574b3bd2ed7dd27688d62f84c731efef0cbe0c10a128144e51e55a2a2e3e68a11a6b74e813140ee917aee3c1b1b8954e306de66a76ab5

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBLB/bS:sxX7QnxrloE5dpUpQb

Malware Config

Targets

    • Target

      1fe054d829bd7921d8e714eb7e8b3fdc320c1fd3cc58407778a513506f96a6aaN.exe

    • Size

      2.6MB

    • MD5

      1c90b7ea57dd7d6d53ea22b86fb950b0

    • SHA1

      d06b383f8b7c84e81ce0d4ed59e0aed2db7d4432

    • SHA256

      1fe054d829bd7921d8e714eb7e8b3fdc320c1fd3cc58407778a513506f96a6aa

    • SHA512

      8904cf0fa9e29cacaca574b3bd2ed7dd27688d62f84c731efef0cbe0c10a128144e51e55a2a2e3e68a11a6b74e813140ee917aee3c1b1b8954e306de66a76ab5

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBLB/bS:sxX7QnxrloE5dpUpQb

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks