General
-
Target
42c450e12cc53a00764637b6cef6c28f41dba5994ee236e8f081e1b1dfe98597
-
Size
761KB
-
Sample
240428-rkfngshd96
-
MD5
c214f5a3396bf9848ef06c1b767a9736
-
SHA1
275441a89b0e059ce965926f503f62a9d3e053d0
-
SHA256
42c450e12cc53a00764637b6cef6c28f41dba5994ee236e8f081e1b1dfe98597
-
SHA512
1859b7a1650b00dd4f8347b115bb21352f543a770e084bc912b8f6db6142397cf2454ed08858f37298df2a701ec58e1de5fec29532edbec2b3c6648a8233f2ed
-
SSDEEP
12288:m+aMDGboup+VHKBX3jbgS/Wg0MIn7ou8XBKsHKZycUQUfXJvA:mB+2kHKlzcS/0MInsu8uZycUfvA
Malware Config
Targets
-
-
Target
42c450e12cc53a00764637b6cef6c28f41dba5994ee236e8f081e1b1dfe98597
-
Size
761KB
-
MD5
c214f5a3396bf9848ef06c1b767a9736
-
SHA1
275441a89b0e059ce965926f503f62a9d3e053d0
-
SHA256
42c450e12cc53a00764637b6cef6c28f41dba5994ee236e8f081e1b1dfe98597
-
SHA512
1859b7a1650b00dd4f8347b115bb21352f543a770e084bc912b8f6db6142397cf2454ed08858f37298df2a701ec58e1de5fec29532edbec2b3c6648a8233f2ed
-
SSDEEP
12288:m+aMDGboup+VHKBX3jbgS/Wg0MIn7ou8XBKsHKZycUQUfXJvA:mB+2kHKlzcS/0MInsu8uZycUfvA
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-