General
-
Target
6264fd743cd3cd2eb646292eaf37e093ebabb215f59e6212f80800cd4e8fe236
-
Size
827KB
-
Sample
230419-sgp87adb5v
-
MD5
2dbdb469e27bf704d7aa2510a868671a
-
SHA1
347c364543e776a1367167dcaeda6295a02c070a
-
SHA256
6264fd743cd3cd2eb646292eaf37e093ebabb215f59e6212f80800cd4e8fe236
-
SHA512
06c7cd9340e8bde6a4ab54915456a3a048eacd824aa5a93c1270a962f96777467f6edf1eaec042ef4fc01d19f1698d452932f0e8f1b78d95a0c2965caa9c2ffe
-
SSDEEP
24576:Ey1/+Lsw+qNj3w+eS7TEWmr/QegYTsXj:T12LsxqNU9S7Tu/hHTs
Malware Config
Targets
-
-
Target
6264fd743cd3cd2eb646292eaf37e093ebabb215f59e6212f80800cd4e8fe236
-
Size
827KB
-
MD5
2dbdb469e27bf704d7aa2510a868671a
-
SHA1
347c364543e776a1367167dcaeda6295a02c070a
-
SHA256
6264fd743cd3cd2eb646292eaf37e093ebabb215f59e6212f80800cd4e8fe236
-
SHA512
06c7cd9340e8bde6a4ab54915456a3a048eacd824aa5a93c1270a962f96777467f6edf1eaec042ef4fc01d19f1698d452932f0e8f1b78d95a0c2965caa9c2ffe
-
SSDEEP
24576:Ey1/+Lsw+qNj3w+eS7TEWmr/QegYTsXj:T12LsxqNU9S7Tu/hHTs
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-