General
-
Target
NEAS.9675a2c72edf887e6cc741ea36d99370.exe
-
Size
202KB
-
Sample
231111-s7zkjshe7v
-
MD5
9675a2c72edf887e6cc741ea36d99370
-
SHA1
2f4d876d8a60a510f3db248a7297c379ac3abe4c
-
SHA256
5912b08ffe9de649d005af08c3c8580c9d16ecba2c0c537713dd4f74e773580c
-
SHA512
7833d5ea8b70c618be9be79fc32b317b5084d0550c2939246216f08fd6fa877557697ac09744abc81046f60a6f61609b965f8baaf77cebd8f10af0a04eb75c97
-
SSDEEP
6144:A//ICMmDRxs3NBR4SiYC5bc+Ys9s06r6hskHx9:A//vi9BWlYCbHLse7
Malware Config
Targets
-
-
Target
NEAS.9675a2c72edf887e6cc741ea36d99370.exe
-
Size
202KB
-
MD5
9675a2c72edf887e6cc741ea36d99370
-
SHA1
2f4d876d8a60a510f3db248a7297c379ac3abe4c
-
SHA256
5912b08ffe9de649d005af08c3c8580c9d16ecba2c0c537713dd4f74e773580c
-
SHA512
7833d5ea8b70c618be9be79fc32b317b5084d0550c2939246216f08fd6fa877557697ac09744abc81046f60a6f61609b965f8baaf77cebd8f10af0a04eb75c97
-
SSDEEP
6144:A//ICMmDRxs3NBR4SiYC5bc+Ys9s06r6hskHx9:A//vi9BWlYCbHLse7
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-