General
-
Target
7ea6803e55d52bef2e20e24c131200ade775c82db5060fc82411de822def4c6a
-
Size
384KB
-
Sample
221205-rjl4wagb83
-
MD5
a03a8950ba6b22c589b3fdf4e8d25994
-
SHA1
b581199fc951cfa9f78c9db001944bfa980d56c5
-
SHA256
7ea6803e55d52bef2e20e24c131200ade775c82db5060fc82411de822def4c6a
-
SHA512
71e815b1b59612d0aeabff6e73dfbf7d5695e9fa694042018ae4ee82dbe29712f31916519fc935fef7c39e52fbc4f2856065933fee49d92f82eceffaa01a3db6
-
SSDEEP
6144:ngwXgthy5Wub2L8Xue72NmPUZZ6qZ/qtGeAp27JA6PudZ:gwwthyv2L8hqm8ZFZ/qIel7JXG
Malware Config
Targets
-
-
Target
7ea6803e55d52bef2e20e24c131200ade775c82db5060fc82411de822def4c6a
-
Size
384KB
-
MD5
a03a8950ba6b22c589b3fdf4e8d25994
-
SHA1
b581199fc951cfa9f78c9db001944bfa980d56c5
-
SHA256
7ea6803e55d52bef2e20e24c131200ade775c82db5060fc82411de822def4c6a
-
SHA512
71e815b1b59612d0aeabff6e73dfbf7d5695e9fa694042018ae4ee82dbe29712f31916519fc935fef7c39e52fbc4f2856065933fee49d92f82eceffaa01a3db6
-
SSDEEP
6144:ngwXgthy5Wub2L8Xue72NmPUZZ6qZ/qtGeAp27JA6PudZ:gwwthyv2L8hqm8ZFZ/qIel7JXG
Score8/10-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-