General
-
Target
417f12d6cab86330733d0f575ebcdfa48ec47856bbaf42778a9307ad94c76576
-
Size
730KB
-
Sample
230722-fapymahf55
-
MD5
8a09a2de89ad9237b2befeb40c9d9898
-
SHA1
18aae1742dadd167fa56269c31551b87aa57b94f
-
SHA256
417f12d6cab86330733d0f575ebcdfa48ec47856bbaf42778a9307ad94c76576
-
SHA512
ceb51c3d900f4d6c70171b3db3631ff81cda7b86262e595a7a9702daef86d1b28ba9613a210568ccfa88a106cb9cd5a0d4654f72e0dc378243ebb0930befdf79
-
SSDEEP
12288:cXU7HmLxa9A35KMRvZLgVALw2/qoBqcoUh5F:cXqGLs9SZLlLdioBqcN5
Malware Config
Targets
-
-
Target
417f12d6cab86330733d0f575ebcdfa48ec47856bbaf42778a9307ad94c76576
-
Size
730KB
-
MD5
8a09a2de89ad9237b2befeb40c9d9898
-
SHA1
18aae1742dadd167fa56269c31551b87aa57b94f
-
SHA256
417f12d6cab86330733d0f575ebcdfa48ec47856bbaf42778a9307ad94c76576
-
SHA512
ceb51c3d900f4d6c70171b3db3631ff81cda7b86262e595a7a9702daef86d1b28ba9613a210568ccfa88a106cb9cd5a0d4654f72e0dc378243ebb0930befdf79
-
SSDEEP
12288:cXU7HmLxa9A35KMRvZLgVALw2/qoBqcoUh5F:cXqGLs9SZLlLdioBqcN5
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses Microsoft Outlook profiles
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-