General

  • Target

    79233d79d9250046f8886394bebf68143cb9fea9f154f2e6bb76b4ad9266d234

  • Size

    263KB

  • Sample

    250630-t4c3ta1tfz

  • MD5

    3fb60aef396d9a4345180551062359d3

  • SHA1

    4d5a52a46bc370814adacf71271cfb8a45bce3f4

  • SHA256

    79233d79d9250046f8886394bebf68143cb9fea9f154f2e6bb76b4ad9266d234

  • SHA512

    524af0c108d068d6463b1c2dcb658cc86ecd1020a2e9335123aa6979d13b2c899a15e283b084468fe9bf81c20c1d76eeb083a30b0b93f694582ac9f62fe93dc4

  • SSDEEP

    3072:5aj95S4cTGJORLRkgUA1nQZwFGVO4Mqg+WDY:Ej94SSLRp1nQ4QLd

Malware Config

Targets

    • Target

      79233d79d9250046f8886394bebf68143cb9fea9f154f2e6bb76b4ad9266d234

    • Size

      263KB

    • MD5

      3fb60aef396d9a4345180551062359d3

    • SHA1

      4d5a52a46bc370814adacf71271cfb8a45bce3f4

    • SHA256

      79233d79d9250046f8886394bebf68143cb9fea9f154f2e6bb76b4ad9266d234

    • SHA512

      524af0c108d068d6463b1c2dcb658cc86ecd1020a2e9335123aa6979d13b2c899a15e283b084468fe9bf81c20c1d76eeb083a30b0b93f694582ac9f62fe93dc4

    • SSDEEP

      3072:5aj95S4cTGJORLRkgUA1nQZwFGVO4Mqg+WDY:Ej94SSLRp1nQ4QLd

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks