General
-
Target
NEAS.NEASNEAS43ffb3408277b409fd9914cd9975298f2a91869377c2721c3c3f4ae2e787af9fexeexeexe_JC.exe
-
Size
602KB
-
Sample
231013-t5qejadh52
-
MD5
cbfc359ca5845daf6c6a07fb3d393586
-
SHA1
dbf8d55e14cd5552fc1ac5a9ad70820092af2582
-
SHA256
43ffb3408277b409fd9914cd9975298f2a91869377c2721c3c3f4ae2e787af9f
-
SHA512
1fe2456d24a52a599b1bb586047eef7d1a04170a111f13663c8775311f906f89034476d3473029d8374e58346a08f0ecd64015a3f1077d3b4a949472f0cd08bd
-
SSDEEP
6144:4My51owNp9pPdEtEzu9M9UJo2ouZgDJuT2+ARZEeiPOmN+6sHXl8UCBV6l3KAAOF:4t5qwNPpPaOl98cmE82hmNOacl3KAb9
Malware Config
Targets
-
-
Target
NEAS.NEASNEAS43ffb3408277b409fd9914cd9975298f2a91869377c2721c3c3f4ae2e787af9fexeexeexe_JC.exe
-
Size
602KB
-
MD5
cbfc359ca5845daf6c6a07fb3d393586
-
SHA1
dbf8d55e14cd5552fc1ac5a9ad70820092af2582
-
SHA256
43ffb3408277b409fd9914cd9975298f2a91869377c2721c3c3f4ae2e787af9f
-
SHA512
1fe2456d24a52a599b1bb586047eef7d1a04170a111f13663c8775311f906f89034476d3473029d8374e58346a08f0ecd64015a3f1077d3b4a949472f0cd08bd
-
SSDEEP
6144:4My51owNp9pPdEtEzu9M9UJo2ouZgDJuT2+ARZEeiPOmN+6sHXl8UCBV6l3KAAOF:4t5qwNPpPaOl98cmE82hmNOacl3KAb9
Score7/10-
Reads user/profile data of local email clients
Email clients store some user data on disk where infostealers will often target it.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-