General

  • Target

    f320740b5ac69117b57e29c3a3bdcce8a21dd72cc2330c2afecba02c127ab9b5

  • Size

    4.5MB

  • Sample

    250630-zbveaaxwbt

  • MD5

    76667bb03b9180001ecd929f681c7e12

  • SHA1

    45ebb4d18834687ed77ab4a52ab0b9474298969b

  • SHA256

    f320740b5ac69117b57e29c3a3bdcce8a21dd72cc2330c2afecba02c127ab9b5

  • SHA512

    44b3d2dccd448d41eba502d3e6d52b45755725f6715d2fc2f6f975577591f07d18a2d60eda4f058e02edfcde72d2f6aa29a4307b68d9e74790813ce19d71fe3b

  • SSDEEP

    98304:iLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLq:CjJo

Malware Config

Targets

    • Target

      f320740b5ac69117b57e29c3a3bdcce8a21dd72cc2330c2afecba02c127ab9b5

    • Size

      4.5MB

    • MD5

      76667bb03b9180001ecd929f681c7e12

    • SHA1

      45ebb4d18834687ed77ab4a52ab0b9474298969b

    • SHA256

      f320740b5ac69117b57e29c3a3bdcce8a21dd72cc2330c2afecba02c127ab9b5

    • SHA512

      44b3d2dccd448d41eba502d3e6d52b45755725f6715d2fc2f6f975577591f07d18a2d60eda4f058e02edfcde72d2f6aa29a4307b68d9e74790813ce19d71fe3b

    • SSDEEP

      98304:iLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLq:CjJo

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks