General

  • Target

    0e1083e99e995260d049489662fc2bdbd8f9d86de1a1dc31ec3ff5824173d879

  • Size

    5.8MB

  • Sample

    250630-xgnsks1zgt

  • MD5

    3953b1195858afbfcaa42d919f608c8e

  • SHA1

    289f22a1a5cf0c342962c9718fe0dad0b33be293

  • SHA256

    0e1083e99e995260d049489662fc2bdbd8f9d86de1a1dc31ec3ff5824173d879

  • SHA512

    621870954f0e962718efb13e88c4bc239d56a806e028a65d280ac42d074f89aa8e507f48695d3025e512db33e6e15336701859d7b9200cd80d90c87d27365967

  • SSDEEP

    49152:vDkYOMwwnMb4PmyVhXlxqCLhHt0Q7+V8tgJd80KhzqCejZnvgdo0BHtR:AYOXwnS4rVjx1LVt0Q7+Cga0Kt14vgzT

Malware Config

Targets

    • Target

      0e1083e99e995260d049489662fc2bdbd8f9d86de1a1dc31ec3ff5824173d879

    • Size

      5.8MB

    • MD5

      3953b1195858afbfcaa42d919f608c8e

    • SHA1

      289f22a1a5cf0c342962c9718fe0dad0b33be293

    • SHA256

      0e1083e99e995260d049489662fc2bdbd8f9d86de1a1dc31ec3ff5824173d879

    • SHA512

      621870954f0e962718efb13e88c4bc239d56a806e028a65d280ac42d074f89aa8e507f48695d3025e512db33e6e15336701859d7b9200cd80d90c87d27365967

    • SSDEEP

      49152:vDkYOMwwnMb4PmyVhXlxqCLhHt0Q7+V8tgJd80KhzqCejZnvgdo0BHtR:AYOXwnS4rVjx1LVt0Q7+Cga0Kt14vgzT

    • Drops startup file

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks