General

  • Target

    402fcb188fa38faa7d3eae6298b25a149336f94c34f6c6b4fabfcc4d08e93a65

  • Size

    92KB

  • Sample

    250630-t4a88a1tfy

  • MD5

    bd1553d095b10618e708d82f44b4d301

  • SHA1

    68018f08c0e3ca6a43ef298b1f11b91219faf925

  • SHA256

    402fcb188fa38faa7d3eae6298b25a149336f94c34f6c6b4fabfcc4d08e93a65

  • SHA512

    7d28a77ed1a7de5f76d463d9e31004f8a045e8612147de5de3aeb1eb0742de0524acdc3d6cd03857b02fa7b5bcbd8464868717485f5b2e2fdab441dedf49ee92

  • SSDEEP

    1536:SGCYcx1aeg1viBxvCOt3cyapmebn4ddJZeY86iLflLJYEIs67rxo:SG1f9otNLK4ddJMY86ipmns6S

Malware Config

Targets

    • Target

      402fcb188fa38faa7d3eae6298b25a149336f94c34f6c6b4fabfcc4d08e93a65

    • Size

      92KB

    • MD5

      bd1553d095b10618e708d82f44b4d301

    • SHA1

      68018f08c0e3ca6a43ef298b1f11b91219faf925

    • SHA256

      402fcb188fa38faa7d3eae6298b25a149336f94c34f6c6b4fabfcc4d08e93a65

    • SHA512

      7d28a77ed1a7de5f76d463d9e31004f8a045e8612147de5de3aeb1eb0742de0524acdc3d6cd03857b02fa7b5bcbd8464868717485f5b2e2fdab441dedf49ee92

    • SSDEEP

      1536:SGCYcx1aeg1viBxvCOt3cyapmebn4ddJZeY86iLflLJYEIs67rxo:SG1f9otNLK4ddJMY86ipmns6S

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks