General
-
Target
84bddf6a2319720f3d1c1960465549cef63e76727eca3c330a25fa15b6651791
-
Size
938KB
-
Sample
230418-3qf2zsgg6y
-
MD5
720b9992ef55f8acb0bf1f9db42a1a9e
-
SHA1
36f42f02f9e1776add27d0b13b6c4eecf87ae6bd
-
SHA256
84bddf6a2319720f3d1c1960465549cef63e76727eca3c330a25fa15b6651791
-
SHA512
4f7c17080360f4276752e0c0108afe6f59baebb0921771ad7cf58442ff220ac072f2937b693ffe30e7c62fa7baf18534732457c70e8086f55dc1d11fdce2da4b
-
SSDEEP
24576:PyQz2UFNDCah0HIwEYuFp8tVjKgL+/PNCZukmoq2ysH/NZvNk85:aQz2UrCahv1YuF+3jKgKNCYloqDC+8
Malware Config
Targets
-
-
Target
84bddf6a2319720f3d1c1960465549cef63e76727eca3c330a25fa15b6651791
-
Size
938KB
-
MD5
720b9992ef55f8acb0bf1f9db42a1a9e
-
SHA1
36f42f02f9e1776add27d0b13b6c4eecf87ae6bd
-
SHA256
84bddf6a2319720f3d1c1960465549cef63e76727eca3c330a25fa15b6651791
-
SHA512
4f7c17080360f4276752e0c0108afe6f59baebb0921771ad7cf58442ff220ac072f2937b693ffe30e7c62fa7baf18534732457c70e8086f55dc1d11fdce2da4b
-
SSDEEP
24576:PyQz2UFNDCah0HIwEYuFp8tVjKgL+/PNCZukmoq2ysH/NZvNk85:aQz2UrCahv1YuF+3jKgKNCYloqDC+8
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-