General
-
Target
7b24d4153a1e57ae7a3804a4d9ae4c4b9125206896e346c8cb86ddf823cd325d
-
Size
264KB
-
Sample
240428-rkeq7ahd92
-
MD5
6fbde64b23dfb7b5e25f60650340e7f2
-
SHA1
3d9318a7fbb2871938e3ac4221413c1749194bf5
-
SHA256
7b24d4153a1e57ae7a3804a4d9ae4c4b9125206896e346c8cb86ddf823cd325d
-
SHA512
bb2f3bf2031af860ee1b756533c306fad3c0aa095eb5e4209a96e67bb50a3cf3c3aa54e411cf0b0911624449cdb01a74c6979733a32881fe39f491a5bacb6c1d
-
SSDEEP
3072:/re+a+3dN5eLRkgUA1nQZwFGVO4Mqg+WDY:C+aMgLRp1nQ4QLd
Malware Config
Targets
-
-
Target
7b24d4153a1e57ae7a3804a4d9ae4c4b9125206896e346c8cb86ddf823cd325d
-
Size
264KB
-
MD5
6fbde64b23dfb7b5e25f60650340e7f2
-
SHA1
3d9318a7fbb2871938e3ac4221413c1749194bf5
-
SHA256
7b24d4153a1e57ae7a3804a4d9ae4c4b9125206896e346c8cb86ddf823cd325d
-
SHA512
bb2f3bf2031af860ee1b756533c306fad3c0aa095eb5e4209a96e67bb50a3cf3c3aa54e411cf0b0911624449cdb01a74c6979733a32881fe39f491a5bacb6c1d
-
SSDEEP
3072:/re+a+3dN5eLRkgUA1nQZwFGVO4Mqg+WDY:C+aMgLRp1nQ4QLd
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-