General
-
Target
26474309ff364a9b77c49b965852f3c3
-
Size
164KB
-
Sample
231231-dx8cdahbak
-
MD5
26474309ff364a9b77c49b965852f3c3
-
SHA1
5fb5e21ea847e4080ec47d9062700ad7bce81210
-
SHA256
d478d1f8005ec4e6c4459f1aea6f68e817e7b67b9415e1ae8b0dfe3a0706044b
-
SHA512
c1252ea6f65b4d6519f27c17956cc3f0ea54b880aff9e7886b1096bde225b927c8e7288b6eade0778b6e6ab9e3511da9092dd8f0aba7cf3a5df113359339f4d2
-
SSDEEP
3072:IebXUo855aoZxU6ppmquNAW7eB/55bE73dMcZn9aMg0owLbuUi8mEggJ1cwsHvAG:qNBWNP+kd9WD
Malware Config
Targets
-
-
Target
26474309ff364a9b77c49b965852f3c3
-
Size
164KB
-
MD5
26474309ff364a9b77c49b965852f3c3
-
SHA1
5fb5e21ea847e4080ec47d9062700ad7bce81210
-
SHA256
d478d1f8005ec4e6c4459f1aea6f68e817e7b67b9415e1ae8b0dfe3a0706044b
-
SHA512
c1252ea6f65b4d6519f27c17956cc3f0ea54b880aff9e7886b1096bde225b927c8e7288b6eade0778b6e6ab9e3511da9092dd8f0aba7cf3a5df113359339f4d2
-
SSDEEP
3072:IebXUo855aoZxU6ppmquNAW7eB/55bE73dMcZn9aMg0owLbuUi8mEggJ1cwsHvAG:qNBWNP+kd9WD
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-