General
-
Target
0x0003000000000697-3.dat.exe
-
Size
296KB
-
Sample
201110-x8rkmgdbc2
-
MD5
5d75b8689e2cfbfe8065752fd4c4f661
-
SHA1
9238d8073102fd84c752f6e65edc717944346f20
-
SHA256
fc3da2468a121aff5433ea738221b5e9fd962c87041654b2c88f5291e0e15f22
-
SHA512
7d842d675df4cbcb1cae10b19d3ca4d68637d98a580ae72c1a11c6a612196e4e1382093bd02dbf2a7e92c8b2aa381ab46fccdf755d2de43bc25d3af38ed86575
Static task
static1
Malware Config
Extracted
trickbot
100001
tar2
66.85.183.5:443
185.163.47.157:443
94.140.115.99:443
195.123.240.40:443
195.123.241.226:443
-
autorunName:pwgrab
Targets
-
-
Target
0x0003000000000697-3.dat.exe
-
Size
296KB
-
MD5
5d75b8689e2cfbfe8065752fd4c4f661
-
SHA1
9238d8073102fd84c752f6e65edc717944346f20
-
SHA256
fc3da2468a121aff5433ea738221b5e9fd962c87041654b2c88f5291e0e15f22
-
SHA512
7d842d675df4cbcb1cae10b19d3ca4d68637d98a580ae72c1a11c6a612196e4e1382093bd02dbf2a7e92c8b2aa381ab46fccdf755d2de43bc25d3af38ed86575
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-