General

  • Target

    b2e154d26d63326f2966150d9daccbf30522e0475a3fe992bb6d756074393ad9

  • Size

    804KB

  • Sample

    250630-t2hkhs1te1

  • MD5

    84ecb9c196dac497faf14296d2b54a1d

  • SHA1

    8e9322c3745cb4edae18009aae59801ed3054550

  • SHA256

    b2e154d26d63326f2966150d9daccbf30522e0475a3fe992bb6d756074393ad9

  • SHA512

    141152f63ee1e5bd6df4eb6a9bea246a20c98cebad45e39b6c74bd46c411e78487173eed33b356b1f56b5f634f4c9a7c7f4f5e212c7c0f28bac62f8bda727742

  • SSDEEP

    12288:rjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdg:jhhhhhhhhhhhhhhhhdg

Malware Config

Targets

    • Target

      b2e154d26d63326f2966150d9daccbf30522e0475a3fe992bb6d756074393ad9

    • Size

      804KB

    • MD5

      84ecb9c196dac497faf14296d2b54a1d

    • SHA1

      8e9322c3745cb4edae18009aae59801ed3054550

    • SHA256

      b2e154d26d63326f2966150d9daccbf30522e0475a3fe992bb6d756074393ad9

    • SHA512

      141152f63ee1e5bd6df4eb6a9bea246a20c98cebad45e39b6c74bd46c411e78487173eed33b356b1f56b5f634f4c9a7c7f4f5e212c7c0f28bac62f8bda727742

    • SSDEEP

      12288:rjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdg:jhhhhhhhhhhhhhhhhdg

    • Modifies visibility of file extensions in Explorer

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks