General
-
Target
020c77d8d714df58ffaa497ce81ade78
-
Size
68KB
-
Sample
231229-yd2qpsdcem
-
MD5
020c77d8d714df58ffaa497ce81ade78
-
SHA1
2848c4efd67a566e1930aa4d15436a6472532739
-
SHA256
dee5ba450022b7864bef267548b772a5ea48175e676255319d60564202e7c9fb
-
SHA512
1a32ce6e6d93e38fd1706cd8d1bfdbe78de7ff41dbeb8d0a43b917bc2c4000dea1b31552ef1a17f8c956608a5845fb7adece322ffd26249fcbe00d640aa46f78
-
SSDEEP
1536:vMQfudFJCXkXbbWmGrElKsjF5oMoSzmUm:vMdFJukLaKsiFaMLzml
Malware Config
Targets
-
-
Target
020c77d8d714df58ffaa497ce81ade78
-
Size
68KB
-
MD5
020c77d8d714df58ffaa497ce81ade78
-
SHA1
2848c4efd67a566e1930aa4d15436a6472532739
-
SHA256
dee5ba450022b7864bef267548b772a5ea48175e676255319d60564202e7c9fb
-
SHA512
1a32ce6e6d93e38fd1706cd8d1bfdbe78de7ff41dbeb8d0a43b917bc2c4000dea1b31552ef1a17f8c956608a5845fb7adece322ffd26249fcbe00d640aa46f78
-
SSDEEP
1536:vMQfudFJCXkXbbWmGrElKsjF5oMoSzmUm:vMdFJukLaKsiFaMLzml
Score7/10-
Reads user/profile data of local email clients
Email clients store some user data on disk where infostealers will often target it.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-