General
-
Target
c39cdfb82a535bbc19e54ef1b552868fa0f0de1ddfd6569f4ec451baeee5a712
-
Size
339KB
-
Sample
240406-c1ad3shb9z
-
MD5
a0b104993989f0fa5fab4695b577a161
-
SHA1
b899e5e6a3e6565430711171754264fefcbe919b
-
SHA256
c39cdfb82a535bbc19e54ef1b552868fa0f0de1ddfd6569f4ec451baeee5a712
-
SHA512
c8ceb3f1174547c15cdfc6eb435f58e25e0d9397bc34e79c12ac60f3661210bcf7490150599b370a37a8d67f3f1f14f11f0233ce3104718606f2d7ea4c3317e4
-
SSDEEP
6144:ztvBPnU1b7e9SQii1EkoNlhlrQ2ZrM2xdkVThvtZKfbBeu/y5gJp:Zv1nWdQP1EDhZPxdsqbB//wgL
Malware Config
Targets
-
-
Target
c39cdfb82a535bbc19e54ef1b552868fa0f0de1ddfd6569f4ec451baeee5a712
-
Size
339KB
-
MD5
a0b104993989f0fa5fab4695b577a161
-
SHA1
b899e5e6a3e6565430711171754264fefcbe919b
-
SHA256
c39cdfb82a535bbc19e54ef1b552868fa0f0de1ddfd6569f4ec451baeee5a712
-
SHA512
c8ceb3f1174547c15cdfc6eb435f58e25e0d9397bc34e79c12ac60f3661210bcf7490150599b370a37a8d67f3f1f14f11f0233ce3104718606f2d7ea4c3317e4
-
SSDEEP
6144:ztvBPnU1b7e9SQii1EkoNlhlrQ2ZrM2xdkVThvtZKfbBeu/y5gJp:Zv1nWdQP1EDhZPxdsqbB//wgL
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-