General
-
Target
9ed0f76449bbc6d5d6db12dfc527740c072436c4379248855729321032d91bb7
-
Size
162KB
-
Sample
221015-2ckbtagec3
-
MD5
b08793eadfa6dd535f68e4f67c43e5c0
-
SHA1
f952c86957f37022ce8ba1cab0c02fb262b74f76
-
SHA256
9ed0f76449bbc6d5d6db12dfc527740c072436c4379248855729321032d91bb7
-
SHA512
62ad843c1c98dd270bddba6ff73022e2eae00ff5fcebb93b51e1b63da21fc1ae3124e11c063c655e8c3a13dda070bc25c9db20efbda556a397a294f49a9b3f63
-
SSDEEP
3072:fnhp3kRaJdl8kLz7AuICdiRgrJpBPEg/GXib7VkR4OatVj:f3audlbcdRKJpBPEg/GXib6i
Malware Config
Targets
-
-
Target
9ed0f76449bbc6d5d6db12dfc527740c072436c4379248855729321032d91bb7
-
Size
162KB
-
MD5
b08793eadfa6dd535f68e4f67c43e5c0
-
SHA1
f952c86957f37022ce8ba1cab0c02fb262b74f76
-
SHA256
9ed0f76449bbc6d5d6db12dfc527740c072436c4379248855729321032d91bb7
-
SHA512
62ad843c1c98dd270bddba6ff73022e2eae00ff5fcebb93b51e1b63da21fc1ae3124e11c063c655e8c3a13dda070bc25c9db20efbda556a397a294f49a9b3f63
-
SSDEEP
3072:fnhp3kRaJdl8kLz7AuICdiRgrJpBPEg/GXib7VkR4OatVj:f3audlbcdRKJpBPEg/GXib6i
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-