General
-
Target
Wayrona_Setup.zip
-
Size
1.1MB
-
Sample
240123-rsdtvsbgf7
-
MD5
c7f68e4d822f965f4c2341a95ae08c03
-
SHA1
f3d5ec63b2fd036cdf014290dc96b61be621181c
-
SHA256
a475305f39a4095a7c90e8acae912b312381472d0c59cf8252047edc9c1773ca
-
SHA512
669a67ae080fd5788a27267be08e522251d28f26c6113bbb31f93ab291c74c7d4657070fd2d4a95018957a082eea3efa1e6b4bf2a7ca1ed96195ec831bbada39
-
SSDEEP
24576:DdspT1zI1syhWFae9gP3FpP+ta5OAUgv7WK4a8rSTO40HCqK2k+zgY:DUROsyhWUe9gvFsU8AU+7/ISTd0HCxoz
Malware Config
Targets
-
-
Target
WayrRona.exe.exe
-
Size
2.2MB
-
MD5
de62ef5a6148d43c21d7150e9b51e645
-
SHA1
60ef71b46d8cfbab8f8acdccecb6162f2c634d24
-
SHA256
9416c3ca4bf12259401fe36bd7460ad2363ebd1842b08ffb518943dc885fadfe
-
SHA512
2d1dc3f52b1a72569628efa550a31343365e28d17dfbae656a5b2e7fc3e6868e10388d2985cca4b3331fab5718860f582feb0394949a94472e296a52a286db2d
-
SSDEEP
24576:OOfsfKozBKHAhRh3KzPSA7R7Bt28SVSVlzyQOQZ9IEb68vL4R+2pYJeCYMXABtu:PBozBdhEV7q8bOQnIFWY+3Je0wG
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-