General
-
Target
711b8eae591a1263be3bb9d7335d7aee131e6ec946d7b02d50bd4891d8691a65
-
Size
244KB
-
Sample
221019-2hz98abdb7
-
MD5
90bb71d6b2ad3c4e69c134ae01cc1d80
-
SHA1
a1ee32519f77bf8af82f8134609da003f6d305ab
-
SHA256
711b8eae591a1263be3bb9d7335d7aee131e6ec946d7b02d50bd4891d8691a65
-
SHA512
c2d7461bb2e4a09ce36e638239a72b3ff106c8424833e58b730c472f1d6b633cad781e58c92652d0ed99ad0a11ceca5130034f5a357b0655c130e693d2113b40
-
SSDEEP
3072:QjyQE1Jlrgku8X2rrP9/4Za5lq27nki3IMtnd9hh7DZUNaeqr6/qiFTqPsg:Qez92nPVAajnki3IMtd9WNafHil1g
Malware Config
Targets
-
-
Target
711b8eae591a1263be3bb9d7335d7aee131e6ec946d7b02d50bd4891d8691a65
-
Size
244KB
-
MD5
90bb71d6b2ad3c4e69c134ae01cc1d80
-
SHA1
a1ee32519f77bf8af82f8134609da003f6d305ab
-
SHA256
711b8eae591a1263be3bb9d7335d7aee131e6ec946d7b02d50bd4891d8691a65
-
SHA512
c2d7461bb2e4a09ce36e638239a72b3ff106c8424833e58b730c472f1d6b633cad781e58c92652d0ed99ad0a11ceca5130034f5a357b0655c130e693d2113b40
-
SSDEEP
3072:QjyQE1Jlrgku8X2rrP9/4Za5lq27nki3IMtnd9hh7DZUNaeqr6/qiFTqPsg:Qez92nPVAajnki3IMtd9WNafHil1g
Score8/10-
Blocklisted process makes network request
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Deletes itself
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-