General
-
Target
efb2e7abfca1956d31c9ff7b4290205047dd4a019a64fa1eb8e24ebb6828d3c5
-
Size
75KB
-
Sample
250401-tpr87a1zhz
-
MD5
8ebdcaf6fbc92463685d03d5b213316f
-
SHA1
9587fb9b53ec8be62b7f51c39ce7a4cd40ed8340
-
SHA256
efb2e7abfca1956d31c9ff7b4290205047dd4a019a64fa1eb8e24ebb6828d3c5
-
SHA512
1ad2a8ce4c10306fd892024a9f9f65b2d8ea42533425264e00082078ea3508773c91d52e2ff26a5710e22012a7631d3ced370b08791bdd3117d752b6a9f597f5
-
SSDEEP
1536:2EaYzMXqtGNttyeiZnZLYm1XEToa9D4ZQKbgZi1dst7x9PxQ:2EaY46tGNttyeQLYm1DlZQKbgZi1St7y
Malware Config
Targets
-
-
Target
efb2e7abfca1956d31c9ff7b4290205047dd4a019a64fa1eb8e24ebb6828d3c5
-
Size
75KB
-
MD5
8ebdcaf6fbc92463685d03d5b213316f
-
SHA1
9587fb9b53ec8be62b7f51c39ce7a4cd40ed8340
-
SHA256
efb2e7abfca1956d31c9ff7b4290205047dd4a019a64fa1eb8e24ebb6828d3c5
-
SHA512
1ad2a8ce4c10306fd892024a9f9f65b2d8ea42533425264e00082078ea3508773c91d52e2ff26a5710e22012a7631d3ced370b08791bdd3117d752b6a9f597f5
-
SSDEEP
1536:2EaYzMXqtGNttyeiZnZLYm1XEToa9D4ZQKbgZi1dst7x9PxQ:2EaY46tGNttyeQLYm1DlZQKbgZi1St7y
Score8/10-
Drops file in Drivers directory
-
Drops startup file
-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1