General

  • Target

    9219be5c64d1ea3efd5c2ee3dade82336922e53ea74716648641dbb408ce88a9

  • Size

    397KB

  • Sample

    250630-t2hkhs1tez

  • MD5

    587280530b6fb7a7e94155abd870c37d

  • SHA1

    38dba53b1f98ba8fc594af5cf6763904730d4b51

  • SHA256

    9219be5c64d1ea3efd5c2ee3dade82336922e53ea74716648641dbb408ce88a9

  • SHA512

    c0f84a8f66b81f8b8918a5e16dcf25539fa2b38f5e3fb35a39c9ec5d21d3d6358c20b5c942f59b20520f7be343a525857e60b74b71a28e0d4321f59f2ac3e464

  • SSDEEP

    6144:b11ofnDXYQ/BWJjmpgtBZQZKQj8p3jyb7HREd4SZ1tzLbF:b114DXYJmSTZwYp32bY4qtDF

Malware Config

Targets

    • Target

      9219be5c64d1ea3efd5c2ee3dade82336922e53ea74716648641dbb408ce88a9

    • Size

      397KB

    • MD5

      587280530b6fb7a7e94155abd870c37d

    • SHA1

      38dba53b1f98ba8fc594af5cf6763904730d4b51

    • SHA256

      9219be5c64d1ea3efd5c2ee3dade82336922e53ea74716648641dbb408ce88a9

    • SHA512

      c0f84a8f66b81f8b8918a5e16dcf25539fa2b38f5e3fb35a39c9ec5d21d3d6358c20b5c942f59b20520f7be343a525857e60b74b71a28e0d4321f59f2ac3e464

    • SSDEEP

      6144:b11ofnDXYQ/BWJjmpgtBZQZKQj8p3jyb7HREd4SZ1tzLbF:b114DXYJmSTZwYp32bY4qtDF

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks