General
-
Target
ea6a6d5981a0525a7179cccbd9a49cf4a8e76a03d092ac61ff7892da7e822110
-
Size
2.1MB
-
Sample
221128-be2qrsce83
-
MD5
ad8dcda8253b4453c533484df10c4067
-
SHA1
a744f19e200d9faad8753086aff9f5b04258f961
-
SHA256
ea6a6d5981a0525a7179cccbd9a49cf4a8e76a03d092ac61ff7892da7e822110
-
SHA512
06dec471502cf0907d8cea35feb3ab450bdef086009df92cb4df96e99b31a0f86442b06dfca03a936b0f5cc857faea26bb16170a0c5b1e610826794615666898
-
SSDEEP
24576:iiIilDPUiIilDPeww5fL0vXlBsbSAOidYrovp4Tp9aQCoGsXHRL:1MD0vXlBMO+YrovpU/9L
Malware Config
Targets
-
-
Target
ea6a6d5981a0525a7179cccbd9a49cf4a8e76a03d092ac61ff7892da7e822110
-
Size
2.1MB
-
MD5
ad8dcda8253b4453c533484df10c4067
-
SHA1
a744f19e200d9faad8753086aff9f5b04258f961
-
SHA256
ea6a6d5981a0525a7179cccbd9a49cf4a8e76a03d092ac61ff7892da7e822110
-
SHA512
06dec471502cf0907d8cea35feb3ab450bdef086009df92cb4df96e99b31a0f86442b06dfca03a936b0f5cc857faea26bb16170a0c5b1e610826794615666898
-
SSDEEP
24576:iiIilDPUiIilDPeww5fL0vXlBsbSAOidYrovp4Tp9aQCoGsXHRL:1MD0vXlBMO+YrovpU/9L
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-