General
-
Target
c010a3f0614479eb3ea3464c540d089845ebfb88367841f4713244bfb22667c6
-
Size
244KB
-
Sample
221003-c65r6scfg9
-
MD5
6ba8b2590287122052faf0045e6ef460
-
SHA1
5271d2605d01bbdae749d1b2a567272d1eb62fdd
-
SHA256
c010a3f0614479eb3ea3464c540d089845ebfb88367841f4713244bfb22667c6
-
SHA512
1182fb8b29c3ef781230ef80a4a2d57f0b632519cf8342129ac855f1d8d327dccf84a1069501772a5e877d2ea1012f3fbee507479bef233ead3c85e6498f0f2d
-
SSDEEP
3072:B58gDfmEQOJt07iqHMagbkRECMGEVIrsKgGbQ/KU9EC1AgXCev:B5HRWDMagbkGC9EVkkr/9P
Malware Config
Targets
-
-
Target
c010a3f0614479eb3ea3464c540d089845ebfb88367841f4713244bfb22667c6
-
Size
244KB
-
MD5
6ba8b2590287122052faf0045e6ef460
-
SHA1
5271d2605d01bbdae749d1b2a567272d1eb62fdd
-
SHA256
c010a3f0614479eb3ea3464c540d089845ebfb88367841f4713244bfb22667c6
-
SHA512
1182fb8b29c3ef781230ef80a4a2d57f0b632519cf8342129ac855f1d8d327dccf84a1069501772a5e877d2ea1012f3fbee507479bef233ead3c85e6498f0f2d
-
SSDEEP
3072:B58gDfmEQOJt07iqHMagbkRECMGEVIrsKgGbQ/KU9EC1AgXCev:B5HRWDMagbkGC9EVkkr/9P
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-