General
-
Target
a6ff22c22bef36f9a634e9b919ba3ace8d8eb22ddac18cedba968a09b80aafb5
-
Size
29.1MB
-
Sample
221127-ftstmabf65
-
MD5
087ca4f5efe32a1d61d2d3107f1b4a49
-
SHA1
2f8e53a2529386ae800f0f5c884b3ab8ff3b83b7
-
SHA256
a6ff22c22bef36f9a634e9b919ba3ace8d8eb22ddac18cedba968a09b80aafb5
-
SHA512
bab320b379d3863b2d7a92ec5c84a5172477be7181da03a5ac07c8b3a6e840831aa3c9b1ff7d3b747ae8a52970010a9d5b26678a40ee1b70c4380c44d70d9930
-
SSDEEP
786432:wXeOvzAqv3OVAL2coJNYcpaGAvDtaCNsBB7bAeE/:uJv9PO6acwYNs76
Malware Config
Targets
-
-
Target
a6ff22c22bef36f9a634e9b919ba3ace8d8eb22ddac18cedba968a09b80aafb5
-
Size
29.1MB
-
MD5
087ca4f5efe32a1d61d2d3107f1b4a49
-
SHA1
2f8e53a2529386ae800f0f5c884b3ab8ff3b83b7
-
SHA256
a6ff22c22bef36f9a634e9b919ba3ace8d8eb22ddac18cedba968a09b80aafb5
-
SHA512
bab320b379d3863b2d7a92ec5c84a5172477be7181da03a5ac07c8b3a6e840831aa3c9b1ff7d3b747ae8a52970010a9d5b26678a40ee1b70c4380c44d70d9930
-
SSDEEP
786432:wXeOvzAqv3OVAL2coJNYcpaGAvDtaCNsBB7bAeE/:uJv9PO6acwYNs76
Score8/10-
Executes dropped EXE
-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-