General
-
Target
e714ae53748ae7cb540edf075bdb585016f71026857426680d2326f0fcb66ed0
-
Size
1.9MB
-
Sample
221123-s9jxwage2y
-
MD5
85119eac00df129c76939347bce1ca94
-
SHA1
ce4958adc70497c4b8e4c0656f2d828561c4882b
-
SHA256
e714ae53748ae7cb540edf075bdb585016f71026857426680d2326f0fcb66ed0
-
SHA512
f87b672c6063eb906fdfa23e6b88eb0c6a825206c9737072d8d367ce6201100d539d0274547f4e0454b6ca5c03a84a8ee38bd17b6dd3e39fdf60d37e062f7e8e
-
SSDEEP
49152:J7TZushjEqTA1WDAffgf/Bqt9R0AfA0ig/D1wuWM7GlBnQwIsv:FEp1WDAfqqHRRV/pwW7GlFQC
Malware Config
Targets
-
-
Target
e714ae53748ae7cb540edf075bdb585016f71026857426680d2326f0fcb66ed0
-
Size
1.9MB
-
MD5
85119eac00df129c76939347bce1ca94
-
SHA1
ce4958adc70497c4b8e4c0656f2d828561c4882b
-
SHA256
e714ae53748ae7cb540edf075bdb585016f71026857426680d2326f0fcb66ed0
-
SHA512
f87b672c6063eb906fdfa23e6b88eb0c6a825206c9737072d8d367ce6201100d539d0274547f4e0454b6ca5c03a84a8ee38bd17b6dd3e39fdf60d37e062f7e8e
-
SSDEEP
49152:J7TZushjEqTA1WDAffgf/Bqt9R0AfA0ig/D1wuWM7GlBnQwIsv:FEp1WDAfqqHRRV/pwW7GlFQC
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-