General

  • Target

    23493df1612043c515d81d096c8695358d91e9f8cd3658fed8192b98c6e4dab0

  • Size

    1.0MB

  • Sample

    250630-t2hkhstkx4

  • MD5

    96cf527a9f7e534126353c47cdb9a6eb

  • SHA1

    183c744517a44988f616ba1a8287e23110c3f140

  • SHA256

    23493df1612043c515d81d096c8695358d91e9f8cd3658fed8192b98c6e4dab0

  • SHA512

    6e0cd47a67e9e478d98d5ad6de461a4d4a5164f9b0a162eaa3f3eb86d32e11d98b926be4ff260a34159d4d0cd6364013f4eb3d68ddf141a451670b86d7eb7389

  • SSDEEP

    12288:rjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjz8:jhhhhhhhhhhhhhhhhhhhhhdg

Malware Config

Targets

    • Target

      23493df1612043c515d81d096c8695358d91e9f8cd3658fed8192b98c6e4dab0

    • Size

      1.0MB

    • MD5

      96cf527a9f7e534126353c47cdb9a6eb

    • SHA1

      183c744517a44988f616ba1a8287e23110c3f140

    • SHA256

      23493df1612043c515d81d096c8695358d91e9f8cd3658fed8192b98c6e4dab0

    • SHA512

      6e0cd47a67e9e478d98d5ad6de461a4d4a5164f9b0a162eaa3f3eb86d32e11d98b926be4ff260a34159d4d0cd6364013f4eb3d68ddf141a451670b86d7eb7389

    • SSDEEP

      12288:rjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjzdjz8:jhhhhhhhhhhhhhhhhhhhhhdg

    • Modifies visibility of file extensions in Explorer

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks