General
-
Target
SecuriteInfo.com.Program.Unwanted.5457.28396.309.exe
-
Size
25.3MB
-
Sample
240312-3gjrhsga66
-
MD5
e55737aa31c86a2d4a29663a7dc6cae3
-
SHA1
e9b563123c7a80d35f359229b1780270464f05eb
-
SHA256
0fba13c834e6a50d40c8b52c116953147d8d3cb4d1ce700e9961444fda5f6b8a
-
SHA512
bbdb10ac3d4f3af99b59c5bab2646d4203182f5af66a197fe76b1739b867821d1a522287e720c723826769aa174fc41717db6af3a92d3fbb2e56eec4299ea539
-
SSDEEP
786432:EXuw6GnSUmq0BAMBkQS8LpUtQqDx4vIWxIu3c33fAW:Ej6fH6MGQ3pxqDqwWeu3evAW
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Program.Unwanted.5457.28396.309.exe
-
Size
25.3MB
-
MD5
e55737aa31c86a2d4a29663a7dc6cae3
-
SHA1
e9b563123c7a80d35f359229b1780270464f05eb
-
SHA256
0fba13c834e6a50d40c8b52c116953147d8d3cb4d1ce700e9961444fda5f6b8a
-
SHA512
bbdb10ac3d4f3af99b59c5bab2646d4203182f5af66a197fe76b1739b867821d1a522287e720c723826769aa174fc41717db6af3a92d3fbb2e56eec4299ea539
-
SSDEEP
786432:EXuw6GnSUmq0BAMBkQS8LpUtQqDx4vIWxIu3c33fAW:Ej6fH6MGQ3pxqDqwWeu3evAW
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-