General
-
Target
c410a8cd43d9ec90819f94018c6da82ef108a5eb7eec7d356ea25b132745252e
-
Size
449KB
-
Sample
240420-c2ep7aeb73
-
MD5
c8cb9086adaa8f151842abc75b841f17
-
SHA1
46021888a5e6ee2d9ccf08dff903105f2099d549
-
SHA256
c410a8cd43d9ec90819f94018c6da82ef108a5eb7eec7d356ea25b132745252e
-
SHA512
f104e854eb541021e671d32dfab6081c338f4f1c618dc0c644fd54d61695af71229e746ca47da2ed71d68bb15308632dd3e9d7d099e207f39d6368d5a522cc5c
-
SSDEEP
12288:Zv1nWdQP1EDhZPxXv1dJR2fO4OwmE65b7n:Z9ndEVfXvfJR2fvOM4X
Malware Config
Targets
-
-
Target
c410a8cd43d9ec90819f94018c6da82ef108a5eb7eec7d356ea25b132745252e
-
Size
449KB
-
MD5
c8cb9086adaa8f151842abc75b841f17
-
SHA1
46021888a5e6ee2d9ccf08dff903105f2099d549
-
SHA256
c410a8cd43d9ec90819f94018c6da82ef108a5eb7eec7d356ea25b132745252e
-
SHA512
f104e854eb541021e671d32dfab6081c338f4f1c618dc0c644fd54d61695af71229e746ca47da2ed71d68bb15308632dd3e9d7d099e207f39d6368d5a522cc5c
-
SSDEEP
12288:Zv1nWdQP1EDhZPxXv1dJR2fO4OwmE65b7n:Z9ndEVfXvfJR2fvOM4X
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-