General
-
Target
5b35524781f8c6b3b80f5854098e23803ab72fd8f95d68afbb603663f0090145
-
Size
2.8MB
-
Sample
240417-gllk1sfc88
-
MD5
609341253f25cc83d3e2af2d56002ebc
-
SHA1
a94d2a4ae5eac82e5dafb7b01ace5478fe82ae5a
-
SHA256
5b35524781f8c6b3b80f5854098e23803ab72fd8f95d68afbb603663f0090145
-
SHA512
8e3f5a7d7be0f801c113762837aeaf65cb217235e8178eab4dd3dd0dd7d155f93eda892da86fc483a6bba5f0b4574b006120a6d7506601f4f8bb3e4be54d3258
-
SSDEEP
49152:lBz86gLKJuMarhVnMFwTH8/giBiBcbk4ZxZ2DqFeVMhuxcPh:l3d1XdhBiiMa7
Malware Config
Targets
-
-
Target
5b35524781f8c6b3b80f5854098e23803ab72fd8f95d68afbb603663f0090145
-
Size
2.8MB
-
MD5
609341253f25cc83d3e2af2d56002ebc
-
SHA1
a94d2a4ae5eac82e5dafb7b01ace5478fe82ae5a
-
SHA256
5b35524781f8c6b3b80f5854098e23803ab72fd8f95d68afbb603663f0090145
-
SHA512
8e3f5a7d7be0f801c113762837aeaf65cb217235e8178eab4dd3dd0dd7d155f93eda892da86fc483a6bba5f0b4574b006120a6d7506601f4f8bb3e4be54d3258
-
SSDEEP
49152:lBz86gLKJuMarhVnMFwTH8/giBiBcbk4ZxZ2DqFeVMhuxcPh:l3d1XdhBiiMa7
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-