General
-
Target
9a27db75ae8ab54d79997b07762367621e37b19d692c7418333f4a01f79b4632
-
Size
577KB
-
Sample
240428-rkdtwshd88
-
MD5
7a0fb448ae48d218747692677e9f2358
-
SHA1
0dd7c64ac679b53f6ea4dff785171f0b974f8b05
-
SHA256
9a27db75ae8ab54d79997b07762367621e37b19d692c7418333f4a01f79b4632
-
SHA512
4b230e989b796949dddc50eb05fb42fdea382df53dd1b928baf320f5c6cc73c926848be38cea8aca943c8bda8dc2150b5976f6da2fedcdec5609c0b5cb499485
-
SSDEEP
6144:m+aMKE7cV3iwbAFRWAbd4nf0H05yqE6Hl0ChW0+ksllAXBu0lWGWUJJQ4t0BHQQG:m+aMR7a3iwbihym2g7XO3LWUQfh4Co
Malware Config
Targets
-
-
Target
9a27db75ae8ab54d79997b07762367621e37b19d692c7418333f4a01f79b4632
-
Size
577KB
-
MD5
7a0fb448ae48d218747692677e9f2358
-
SHA1
0dd7c64ac679b53f6ea4dff785171f0b974f8b05
-
SHA256
9a27db75ae8ab54d79997b07762367621e37b19d692c7418333f4a01f79b4632
-
SHA512
4b230e989b796949dddc50eb05fb42fdea382df53dd1b928baf320f5c6cc73c926848be38cea8aca943c8bda8dc2150b5976f6da2fedcdec5609c0b5cb499485
-
SSDEEP
6144:m+aMKE7cV3iwbAFRWAbd4nf0H05yqE6Hl0ChW0+ksllAXBu0lWGWUJJQ4t0BHQQG:m+aMR7a3iwbihym2g7XO3LWUQfh4Co
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-