General
-
Target
70764819b1a923b50c2513feae7bf126
-
Size
6.6MB
-
Sample
231226-p8pj7aefgq
-
MD5
70764819b1a923b50c2513feae7bf126
-
SHA1
f81a45960694454bcdf9bba5d702482cd30331bb
-
SHA256
e06a8fb0466ef7ea9b7e95f1cadaaa0c3196b976f60db7564088a1f66a5d30f3
-
SHA512
99d8c65d42cde2ff84ebf9f49c5495cbe9e87da2040b1622abaa5ba9a398de15070afcd1f8518b624e33cbf6034b41f122cea130a81132f30b52c9e98df2f518
-
SSDEEP
196608:z3PmCsXDjDyf6L2WliXYrHW1L0VFMw7gHDX:rPmCEDVL2ciIrHWRcMw74
Malware Config
Targets
-
-
Target
70764819b1a923b50c2513feae7bf126
-
Size
6.6MB
-
MD5
70764819b1a923b50c2513feae7bf126
-
SHA1
f81a45960694454bcdf9bba5d702482cd30331bb
-
SHA256
e06a8fb0466ef7ea9b7e95f1cadaaa0c3196b976f60db7564088a1f66a5d30f3
-
SHA512
99d8c65d42cde2ff84ebf9f49c5495cbe9e87da2040b1622abaa5ba9a398de15070afcd1f8518b624e33cbf6034b41f122cea130a81132f30b52c9e98df2f518
-
SSDEEP
196608:z3PmCsXDjDyf6L2WliXYrHW1L0VFMw7gHDX:rPmCEDVL2ciIrHWRcMw74
Score7/10-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-