General
-
Target
c6efed7bd3f653226121cc6221e67b29f5ab268e0d8465a29da2c12b818631e0.exe
-
Size
862KB
-
Sample
240213-fsxq7aeh84
-
MD5
451242c66de4ba164892f8c02444c2a6
-
SHA1
b9b54d42a516208a2b003615b127d420433f3f57
-
SHA256
c6efed7bd3f653226121cc6221e67b29f5ab268e0d8465a29da2c12b818631e0
-
SHA512
0fdfea2fc2b11622cab8fd9459c5a317113cb9ce8bd18a1c8be9eb02db0fa54f18776b3a113d7a6c5971dc87e54490b48a3f783be125d14811d79d1c51f4e069
-
SSDEEP
12288:A6F8gPUVpBqFnkB5ZGUJUz6m3+hrWjPNq1tp1s8ef/tnlb0PAnSrhgY2fxRiQbox:A6FYBqNkZVW+EW
Malware Config
Targets
-
-
Target
c6efed7bd3f653226121cc6221e67b29f5ab268e0d8465a29da2c12b818631e0.exe
-
Size
862KB
-
MD5
451242c66de4ba164892f8c02444c2a6
-
SHA1
b9b54d42a516208a2b003615b127d420433f3f57
-
SHA256
c6efed7bd3f653226121cc6221e67b29f5ab268e0d8465a29da2c12b818631e0
-
SHA512
0fdfea2fc2b11622cab8fd9459c5a317113cb9ce8bd18a1c8be9eb02db0fa54f18776b3a113d7a6c5971dc87e54490b48a3f783be125d14811d79d1c51f4e069
-
SSDEEP
12288:A6F8gPUVpBqFnkB5ZGUJUz6m3+hrWjPNq1tp1s8ef/tnlb0PAnSrhgY2fxRiQbox:A6FYBqNkZVW+EW
Score9/10-
Detects executables packed with ConfuserEx Mod
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-