General
-
Target
bb788e9215c91ba1d1fde8ce6b8438ffaf8e50c5a99255347f3cc03f2af94a85
-
Size
49KB
-
Sample
221012-wtz6pseham
-
MD5
7aecb33060415e76cfcd49e7354f97ca
-
SHA1
254338d5ac4a136359eff588294a23c815dfb0c6
-
SHA256
bb788e9215c91ba1d1fde8ce6b8438ffaf8e50c5a99255347f3cc03f2af94a85
-
SHA512
cf4fe4458453b0fa637ae4a0a4f70b5cbc1321de2c77f1ef48e6b99bfbf3885fd22e5d89720711fe1977b44d65a5df44e206251772adedfbe51b6a57f7572524
-
SSDEEP
768:FQq1nmIlt9U9LyaVbFURAxJVdnidQDtzsoxRhVBbZM2aV5ivdODVz:FQWt9ILlVbzJT9soFrZM2YYlk
Malware Config
Targets
-
-
Target
bb788e9215c91ba1d1fde8ce6b8438ffaf8e50c5a99255347f3cc03f2af94a85
-
Size
49KB
-
MD5
7aecb33060415e76cfcd49e7354f97ca
-
SHA1
254338d5ac4a136359eff588294a23c815dfb0c6
-
SHA256
bb788e9215c91ba1d1fde8ce6b8438ffaf8e50c5a99255347f3cc03f2af94a85
-
SHA512
cf4fe4458453b0fa637ae4a0a4f70b5cbc1321de2c77f1ef48e6b99bfbf3885fd22e5d89720711fe1977b44d65a5df44e206251772adedfbe51b6a57f7572524
-
SSDEEP
768:FQq1nmIlt9U9LyaVbFURAxJVdnidQDtzsoxRhVBbZM2aV5ivdODVz:FQWt9ILlVbzJT9soFrZM2YYlk
Score10/10-
Modifies WinLogon for persistence
-
Deletes itself
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-