General

  • Target

    814437d4161218080f683e27f37c2cbbd4883336599570ac9c3523f63b1ebf44

  • Size

    56KB

  • Sample

    250630-t31sgshm9s

  • MD5

    9d809fe8339f46a2a4446d23dbe13231

  • SHA1

    e689eef82e06fc5d171798819333593f2944ea1c

  • SHA256

    814437d4161218080f683e27f37c2cbbd4883336599570ac9c3523f63b1ebf44

  • SHA512

    fa42c93ea81452eaab705286496cc91557fba07dc96ef57c4035a5dd7c3c722358106630d787b3f7f56289e152c04b61a685bf9538adccc912e19108ebc8afee

  • SSDEEP

    768:SGJY3hfpQFJFKZj1PVs9Ag1vzbaBrOF32zzFF+OtTDMmgqgt6jpYU5ltbDrYiI0R:SGCYcx1aeg1viBxvCOt3+6jWWvr78Pxc

Malware Config

Targets

    • Target

      814437d4161218080f683e27f37c2cbbd4883336599570ac9c3523f63b1ebf44

    • Size

      56KB

    • MD5

      9d809fe8339f46a2a4446d23dbe13231

    • SHA1

      e689eef82e06fc5d171798819333593f2944ea1c

    • SHA256

      814437d4161218080f683e27f37c2cbbd4883336599570ac9c3523f63b1ebf44

    • SHA512

      fa42c93ea81452eaab705286496cc91557fba07dc96ef57c4035a5dd7c3c722358106630d787b3f7f56289e152c04b61a685bf9538adccc912e19108ebc8afee

    • SSDEEP

      768:SGJY3hfpQFJFKZj1PVs9Ag1vzbaBrOF32zzFF+OtTDMmgqgt6jpYU5ltbDrYiI0R:SGCYcx1aeg1viBxvCOt3+6jWWvr78Pxc

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks