General

  • Target

    3c50d5eef82bb453dae5336af1585e900108922ab1b638f0bd754ef63245ada4

  • Size

    3.5MB

  • Sample

    250630-t2hwaatkx5

  • MD5

    e049916029a271889dbfaa9b1718e187

  • SHA1

    e8af0f11c21213931880308ffdd05d9f3e488aac

  • SHA256

    3c50d5eef82bb453dae5336af1585e900108922ab1b638f0bd754ef63245ada4

  • SHA512

    dec7bed7fe982619002b55d87669e0f6ccc63b0fcd8874fe48a713bca3322d06e49226fb64bdc130bbed3fc4996e42e65a0112feea8cd10ecd4f03ffe4e0e470

  • SSDEEP

    49152:j5tzuM0S2S5mLFEuVebedv9uNBb8AftK9qrO1LS9RhSq15vTNuHv/QXd9CQxM4kA:jCFk/fUqrOiOc5z

Malware Config

Targets

    • Target

      3c50d5eef82bb453dae5336af1585e900108922ab1b638f0bd754ef63245ada4

    • Size

      3.5MB

    • MD5

      e049916029a271889dbfaa9b1718e187

    • SHA1

      e8af0f11c21213931880308ffdd05d9f3e488aac

    • SHA256

      3c50d5eef82bb453dae5336af1585e900108922ab1b638f0bd754ef63245ada4

    • SHA512

      dec7bed7fe982619002b55d87669e0f6ccc63b0fcd8874fe48a713bca3322d06e49226fb64bdc130bbed3fc4996e42e65a0112feea8cd10ecd4f03ffe4e0e470

    • SSDEEP

      49152:j5tzuM0S2S5mLFEuVebedv9uNBb8AftK9qrO1LS9RhSq15vTNuHv/QXd9CQxM4kA:jCFk/fUqrOiOc5z

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks