General

  • Target

    74937c60eb549c975a4c1b0affdf071b2c0bb89b118c2a367b28c0ac05049e30

  • Size

    963KB

  • Sample

    250630-t2g9ra1tex

  • MD5

    1a74aa9d8280623a3033b42d3981adc2

  • SHA1

    8ddf3c6a794913156525c63c76a7c595a840b6f2

  • SHA256

    74937c60eb549c975a4c1b0affdf071b2c0bb89b118c2a367b28c0ac05049e30

  • SHA512

    2ff2c14a0563c57e187fdec4f7a26fb38325673e7f2b072fa670590f4e231e5032a9cf13cfae0e2a245d74582d303810668313488ee183d7f9cc34c4c4aa3b96

  • SSDEEP

    12288:b11XRKcv8Nh7py6Rmi78gkPH3aPI9vyVg/0paQuj3IdD02fKBjtp/:p1wBpDRmi78gkPXlyo0G/jr

Malware Config

Targets

    • Target

      74937c60eb549c975a4c1b0affdf071b2c0bb89b118c2a367b28c0ac05049e30

    • Size

      963KB

    • MD5

      1a74aa9d8280623a3033b42d3981adc2

    • SHA1

      8ddf3c6a794913156525c63c76a7c595a840b6f2

    • SHA256

      74937c60eb549c975a4c1b0affdf071b2c0bb89b118c2a367b28c0ac05049e30

    • SHA512

      2ff2c14a0563c57e187fdec4f7a26fb38325673e7f2b072fa670590f4e231e5032a9cf13cfae0e2a245d74582d303810668313488ee183d7f9cc34c4c4aa3b96

    • SSDEEP

      12288:b11XRKcv8Nh7py6Rmi78gkPH3aPI9vyVg/0paQuj3IdD02fKBjtp/:p1wBpDRmi78gkPXlyo0G/jr

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks