General
-
Target
9b63ab5e09d9454ad5f7b7e5361bcc75cd967edf7093128e070010dec3ffb342
-
Size
760KB
-
Sample
230212-tlztvsed8w
-
MD5
7ced0d804beb6f858a4bad5d8d560a10
-
SHA1
b9725c37ab99ab5255c2a10ebc96018e5a5eb396
-
SHA256
9b63ab5e09d9454ad5f7b7e5361bcc75cd967edf7093128e070010dec3ffb342
-
SHA512
643d158ff939da7f3cad96b48825d811518c35b5c531b228b71e29a377cac3f4f2269ba9b6eaf76c60982910a11cec25bd0e84c19f9102e6b6b45eda244cd53c
-
SSDEEP
12288:QMrry90M1VC05f2gIedI3KPvXW3UratJTNh2f8VKJXPc9vdNB:ryjVC05f2GdI3uWEaTNhvwJXPc9Fb
Malware Config
Targets
-
-
Target
9b63ab5e09d9454ad5f7b7e5361bcc75cd967edf7093128e070010dec3ffb342
-
Size
760KB
-
MD5
7ced0d804beb6f858a4bad5d8d560a10
-
SHA1
b9725c37ab99ab5255c2a10ebc96018e5a5eb396
-
SHA256
9b63ab5e09d9454ad5f7b7e5361bcc75cd967edf7093128e070010dec3ffb342
-
SHA512
643d158ff939da7f3cad96b48825d811518c35b5c531b228b71e29a377cac3f4f2269ba9b6eaf76c60982910a11cec25bd0e84c19f9102e6b6b45eda244cd53c
-
SSDEEP
12288:QMrry90M1VC05f2gIedI3KPvXW3UratJTNh2f8VKJXPc9vdNB:ryjVC05f2GdI3uWEaTNhvwJXPc9Fb
Score7/10-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-