General
-
Target
ae86be669c3a8634ea266fa32bb31d17e129f6415ae28641f50624a69584c334
-
Size
1.2MB
-
Sample
210513-68929fdaf6
-
MD5
c2353d76b0b8b87b578e8ce1d2ec7a7a
-
SHA1
3f459642be627f630c7951c09b1490b218fbeffb
-
SHA256
ae86be669c3a8634ea266fa32bb31d17e129f6415ae28641f50624a69584c334
-
SHA512
8c3e21d652e7cc3663d0cffcc12bd5acf75003787d39363bec3fce7e1373de51252e837cc078bfa9c0ebc83a1553e628a36f685c6d8d9aa2d9b7304774102777
Malware Config
Targets
-
-
Target
ae86be669c3a8634ea266fa32bb31d17e129f6415ae28641f50624a69584c334
-
Size
1.2MB
-
MD5
c2353d76b0b8b87b578e8ce1d2ec7a7a
-
SHA1
3f459642be627f630c7951c09b1490b218fbeffb
-
SHA256
ae86be669c3a8634ea266fa32bb31d17e129f6415ae28641f50624a69584c334
-
SHA512
8c3e21d652e7cc3663d0cffcc12bd5acf75003787d39363bec3fce7e1373de51252e837cc078bfa9c0ebc83a1553e628a36f685c6d8d9aa2d9b7304774102777
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-