General
-
Target
991784842d251cd682b56f4639e49ffd77bd1fa272caa8734a6ae78647daa761
-
Size
3.7MB
-
Sample
230106-lgmpqsfe82
-
MD5
b1d4d9642841b72c11090412d966018a
-
SHA1
bb1d2285bf5b1fc513485ddb8123c2189bcb1716
-
SHA256
991784842d251cd682b56f4639e49ffd77bd1fa272caa8734a6ae78647daa761
-
SHA512
16761c8a5be8fb2086bf3e556be6db7b95c6f1d6362045552959a63e10d13004f5fa410e17163a8343150c56d751ac6b5f665f97e6f4f467da4aeb3eab85cf61
-
SSDEEP
98304:IEPwmKGVenUNLS9/Ba2YZc+mAdmuNfkrBvPFO/s9b:zYLYYO2YqXAwlhdO/s9
Malware Config
Targets
-
-
Target
991784842d251cd682b56f4639e49ffd77bd1fa272caa8734a6ae78647daa761
-
Size
3.7MB
-
MD5
b1d4d9642841b72c11090412d966018a
-
SHA1
bb1d2285bf5b1fc513485ddb8123c2189bcb1716
-
SHA256
991784842d251cd682b56f4639e49ffd77bd1fa272caa8734a6ae78647daa761
-
SHA512
16761c8a5be8fb2086bf3e556be6db7b95c6f1d6362045552959a63e10d13004f5fa410e17163a8343150c56d751ac6b5f665f97e6f4f467da4aeb3eab85cf61
-
SSDEEP
98304:IEPwmKGVenUNLS9/Ba2YZc+mAdmuNfkrBvPFO/s9b:zYLYYO2YqXAwlhdO/s9
Score8/10-
Blocklisted process makes network request
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-