General

  • Target

    12efd4430281c5cbf440b9f2cde2fc9f49b2f74c576b80f99122e9b5cb6b850dN.exe

  • Size

    2.6MB

  • Sample

    250119-yyasqatmdz

  • MD5

    bcba0c5c4f5a43027327e516e1998660

  • SHA1

    0626fb129f0d886e03e5a8238547538ba58ac22d

  • SHA256

    12efd4430281c5cbf440b9f2cde2fc9f49b2f74c576b80f99122e9b5cb6b850d

  • SHA512

    eff87e5c2359c1d83c682137a8a70fc6ae64a64c1bdcb91be7f53d9e46a2ab436055310797fc344a39dda46608aeaef2ff00c16cd79f988fe13e506f8e2b676f

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bSq:sxX7QnxrloE5dpUpkbV

Malware Config

Targets

    • Target

      12efd4430281c5cbf440b9f2cde2fc9f49b2f74c576b80f99122e9b5cb6b850dN.exe

    • Size

      2.6MB

    • MD5

      bcba0c5c4f5a43027327e516e1998660

    • SHA1

      0626fb129f0d886e03e5a8238547538ba58ac22d

    • SHA256

      12efd4430281c5cbf440b9f2cde2fc9f49b2f74c576b80f99122e9b5cb6b850d

    • SHA512

      eff87e5c2359c1d83c682137a8a70fc6ae64a64c1bdcb91be7f53d9e46a2ab436055310797fc344a39dda46608aeaef2ff00c16cd79f988fe13e506f8e2b676f

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBXB/bSq:sxX7QnxrloE5dpUpkbV

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks