General
-
Target
ac365fb474a099e459b91bcdd86d7ee147db558a0bae2e7ebb22cff6bcf21e38
-
Size
58KB
-
Sample
240428-xzhz2sfc2s
-
MD5
3337133f9b591b9870a56fcafbcbb815
-
SHA1
bbc23d2e2989c18b76cde39f1910e212d8525453
-
SHA256
ac365fb474a099e459b91bcdd86d7ee147db558a0bae2e7ebb22cff6bcf21e38
-
SHA512
9a3ef2523ca047ba9af1b2ec95ea6f749430b8ff5269c3b956930d4adc0ad63120ff4a7279ff029533bb27faa5e4e1dbf0667912fbfd118a440fcafd710e94b2
-
SSDEEP
768:/qLPcTO5RroZJ76739sBWsNscWlM3dN9N3ZjfPPdvo7TnIuSjvgkGOxJVqL4IbM:/qbSe+Zk78NR3dN5nPdvOnl6vAOxJ0lM
Malware Config
Targets
-
-
Target
ac365fb474a099e459b91bcdd86d7ee147db558a0bae2e7ebb22cff6bcf21e38
-
Size
58KB
-
MD5
3337133f9b591b9870a56fcafbcbb815
-
SHA1
bbc23d2e2989c18b76cde39f1910e212d8525453
-
SHA256
ac365fb474a099e459b91bcdd86d7ee147db558a0bae2e7ebb22cff6bcf21e38
-
SHA512
9a3ef2523ca047ba9af1b2ec95ea6f749430b8ff5269c3b956930d4adc0ad63120ff4a7279ff029533bb27faa5e4e1dbf0667912fbfd118a440fcafd710e94b2
-
SSDEEP
768:/qLPcTO5RroZJ76739sBWsNscWlM3dN9N3ZjfPPdvo7TnIuSjvgkGOxJVqL4IbM:/qbSe+Zk78NR3dN5nPdvOnl6vAOxJ0lM
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-