General
-
Target
09c7a8636ff0ffe35726c61b6f65cc7141ea469b86d995862ae032abe68eea57.exe
-
Size
587KB
-
Sample
240229-fq7tdaec82
-
MD5
16e1d3054438b0bdb203936b79abaa17
-
SHA1
244484c1469af24d64765e483f65f758dc54cece
-
SHA256
09c7a8636ff0ffe35726c61b6f65cc7141ea469b86d995862ae032abe68eea57
-
SHA512
a9e7f69f476b2a81ab560205bc3a20528a78251100a8c65ffad4f815c030901ce14b9ac206f3d65459c0a1f54b76f3dfdfed5bcc2d00e30ecd7739f806a3f128
-
SSDEEP
12288:wvA42BXrQcTctlbkt28G6s2TSSbNrAng1c8hgx:cIQSGktY6XTSSbNrAng1cKgx
Malware Config
Targets
-
-
Target
09c7a8636ff0ffe35726c61b6f65cc7141ea469b86d995862ae032abe68eea57.exe
-
Size
587KB
-
MD5
16e1d3054438b0bdb203936b79abaa17
-
SHA1
244484c1469af24d64765e483f65f758dc54cece
-
SHA256
09c7a8636ff0ffe35726c61b6f65cc7141ea469b86d995862ae032abe68eea57
-
SHA512
a9e7f69f476b2a81ab560205bc3a20528a78251100a8c65ffad4f815c030901ce14b9ac206f3d65459c0a1f54b76f3dfdfed5bcc2d00e30ecd7739f806a3f128
-
SSDEEP
12288:wvA42BXrQcTctlbkt28G6s2TSSbNrAng1c8hgx:cIQSGktY6XTSSbNrAng1cKgx
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-