General
-
Target
6e672c05bb68022030f6cc74f989004cda391294b3c123617806680e63030058
-
Size
666KB
-
Sample
240428-rkfy9ahg9v
-
MD5
26a6073092d481278db335d2ae2a3602
-
SHA1
658a8546d2b0221e7a78729bcea2462b95e948e8
-
SHA256
6e672c05bb68022030f6cc74f989004cda391294b3c123617806680e63030058
-
SHA512
4259c7b8e15ee3c1f5eb103647afcdf069c6421421553da45a37ba502d8b0ea7edc7a31313a24fbbd005233d2433c1ec3f2d0bcb701c0616fd364d931a3833cb
-
SSDEEP
6144:m+aMWC9LRU0ySj14WH+JPb7uL8zRMnJjNhAp7SO8zRMnJjNhAp7S8FRcdEKFVAh7:m+aMbPFlTz
Malware Config
Targets
-
-
Target
6e672c05bb68022030f6cc74f989004cda391294b3c123617806680e63030058
-
Size
666KB
-
MD5
26a6073092d481278db335d2ae2a3602
-
SHA1
658a8546d2b0221e7a78729bcea2462b95e948e8
-
SHA256
6e672c05bb68022030f6cc74f989004cda391294b3c123617806680e63030058
-
SHA512
4259c7b8e15ee3c1f5eb103647afcdf069c6421421553da45a37ba502d8b0ea7edc7a31313a24fbbd005233d2433c1ec3f2d0bcb701c0616fd364d931a3833cb
-
SSDEEP
6144:m+aMWC9LRU0ySj14WH+JPb7uL8zRMnJjNhAp7SO8zRMnJjNhAp7S8FRcdEKFVAh7:m+aMbPFlTz
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-