General
-
Target
d5f39b054b2c8a6a934da29216a022cd
-
Size
26KB
-
Sample
240319-m6gqfsbc4z
-
MD5
d5f39b054b2c8a6a934da29216a022cd
-
SHA1
388eb7449f62954c0960789fc0720477375a5e70
-
SHA256
0ccfe06ac990fdbe3f7b9d287ccf56a3be8bc11dc6c86360a4e871ab613ea098
-
SHA512
21acee5853e00f56374845f3bf30c0bb041cfe681f0aca53f1302e5bfd7e61582d2c0575556bd54e21032043aa00f9c42db9869c9ef6da4bd793ee7ebfd6c460
-
SSDEEP
384:aaOWnXTqMGDdFSUUUJ9x2GmddLSvq6redjaoa3GZXeGhVKjSDNgn76l7c3WW+W8:r3XTEDyY8ddeyMe5a3IeOMtn76l7iWH
Malware Config
Targets
-
-
Target
d5f39b054b2c8a6a934da29216a022cd
-
Size
26KB
-
MD5
d5f39b054b2c8a6a934da29216a022cd
-
SHA1
388eb7449f62954c0960789fc0720477375a5e70
-
SHA256
0ccfe06ac990fdbe3f7b9d287ccf56a3be8bc11dc6c86360a4e871ab613ea098
-
SHA512
21acee5853e00f56374845f3bf30c0bb041cfe681f0aca53f1302e5bfd7e61582d2c0575556bd54e21032043aa00f9c42db9869c9ef6da4bd793ee7ebfd6c460
-
SSDEEP
384:aaOWnXTqMGDdFSUUUJ9x2GmddLSvq6redjaoa3GZXeGhVKjSDNgn76l7c3WW+W8:r3XTEDyY8ddeyMe5a3IeOMtn76l7iWH
Score7/10-
Reads data files stored by FTP clients
Tries to access configuration files associated with programs like FileZilla.
-
Reads local data of messenger clients
Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-