General
-
Target
Setup.exe
-
Size
532KB
-
Sample
240225-h822ysfd8t
-
MD5
9e752b4955759a42d94b655b55d06784
-
SHA1
59d2eb1e6c35f1650dbfe0884a03a07c071e09f8
-
SHA256
3e852da637bffdb51542ea3a2208ff73eb737554e43f7feead2b243c7f0f1083
-
SHA512
cf8b87fe90613c2cb820c0d5f57d686843f57115f02b20a50f5c0bd8cddc92d466c3fa8d45b8b084abea203f03d6ac1328411cc3550c7a63bcf096f779180907
-
SSDEEP
12288:7G5knZfFKer58CGWoOKDtjMF3+nG4nsCGKZ+d+hSOjn4ZSVbsFGxz6:7G50ZfFKUboOMsGsClZ+dnOMZabsiz6
Malware Config
Targets
-
-
Target
Setup.exe
-
Size
532KB
-
MD5
9e752b4955759a42d94b655b55d06784
-
SHA1
59d2eb1e6c35f1650dbfe0884a03a07c071e09f8
-
SHA256
3e852da637bffdb51542ea3a2208ff73eb737554e43f7feead2b243c7f0f1083
-
SHA512
cf8b87fe90613c2cb820c0d5f57d686843f57115f02b20a50f5c0bd8cddc92d466c3fa8d45b8b084abea203f03d6ac1328411cc3550c7a63bcf096f779180907
-
SSDEEP
12288:7G5knZfFKer58CGWoOKDtjMF3+nG4nsCGKZ+d+hSOjn4ZSVbsFGxz6:7G50ZfFKUboOMsGsClZ+dnOMZabsiz6
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Modify Registry
2Subvert Trust Controls
1Install Root Certificate
1