General
-
Target
cf9dbc73cc4c4ec320f30d4a5e14cc31d24779b088e9b7120e3ec7cecf00e5e2
-
Size
491KB
-
Sample
240418-hx8qcsec84
-
MD5
ced10906abda3369dfb396827fc87647
-
SHA1
e8d799c5eac8fcaac4c94da480d1f72ac97000a2
-
SHA256
cf9dbc73cc4c4ec320f30d4a5e14cc31d24779b088e9b7120e3ec7cecf00e5e2
-
SHA512
f8feff80e4be873520a24726a1e9b10c2e3482880fb5fd7298c95924baa4e9aa45534a8bb06da500ddf52d4aff6fe0748fa78cb137ea52d42bf55b3b0196bd0a
-
SSDEEP
6144:D+aaz1gL5pRTMTTjMkId/BynSx7dEe6XwzRaktNP08NhKs39zo43fTtl1fayCV7E:D+a81gL5pRTcAkS/3hzN8qE43fm78V
Malware Config
Targets
-
-
Target
cf9dbc73cc4c4ec320f30d4a5e14cc31d24779b088e9b7120e3ec7cecf00e5e2
-
Size
491KB
-
MD5
ced10906abda3369dfb396827fc87647
-
SHA1
e8d799c5eac8fcaac4c94da480d1f72ac97000a2
-
SHA256
cf9dbc73cc4c4ec320f30d4a5e14cc31d24779b088e9b7120e3ec7cecf00e5e2
-
SHA512
f8feff80e4be873520a24726a1e9b10c2e3482880fb5fd7298c95924baa4e9aa45534a8bb06da500ddf52d4aff6fe0748fa78cb137ea52d42bf55b3b0196bd0a
-
SSDEEP
6144:D+aaz1gL5pRTMTTjMkId/BynSx7dEe6XwzRaktNP08NhKs39zo43fTtl1fayCV7E:D+a81gL5pRTcAkS/3hzN8qE43fm78V
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-