General

  • Target

    4128feb03a58b1aa88191e86648259f1483d33b4dfb7b1505606510eb8abcf44

  • Size

    4.6MB

  • Sample

    250703-f69b5stydz

  • MD5

    d54e56abd3f57861c700a67006858ee6

  • SHA1

    b3eb802d71c6ec927d71c1263cae365ba02435c7

  • SHA256

    4128feb03a58b1aa88191e86648259f1483d33b4dfb7b1505606510eb8abcf44

  • SHA512

    e973201040cd273b7bc3363a16fb46d82c190acef9747cd35e5ad2216f51c136399e7cee3ef6f923ce8b59be622699f3f7c0ca43be7afcc5d26204ce21a5d9c4

  • SSDEEP

    98304:iLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLZ:CjJz

Malware Config

Targets

    • Target

      4128feb03a58b1aa88191e86648259f1483d33b4dfb7b1505606510eb8abcf44

    • Size

      4.6MB

    • MD5

      d54e56abd3f57861c700a67006858ee6

    • SHA1

      b3eb802d71c6ec927d71c1263cae365ba02435c7

    • SHA256

      4128feb03a58b1aa88191e86648259f1483d33b4dfb7b1505606510eb8abcf44

    • SHA512

      e973201040cd273b7bc3363a16fb46d82c190acef9747cd35e5ad2216f51c136399e7cee3ef6f923ce8b59be622699f3f7c0ca43be7afcc5d26204ce21a5d9c4

    • SSDEEP

      98304:iLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLLZ:CjJz

    • Drops startup file

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v16

Tasks