General
-
Target
50e071c7c52b8f79bcc7862073b3fe0296b6e977db5b538d33e128c52d916650
-
Size
93KB
-
Sample
240428-y25ghage4t
-
MD5
a676c871f859984d67661a29da7e591d
-
SHA1
645a33ab03829ae16a5a8061d3eecd45fdc98e6f
-
SHA256
50e071c7c52b8f79bcc7862073b3fe0296b6e977db5b538d33e128c52d916650
-
SHA512
00c27c8eeb4a2dac995ae17a81d52589584f8f5ed6693dd632e6e152688cf01eba3acb45821216c896bee8f5849360e44518b852073d5a8bc5c9f60039697622
-
SSDEEP
1536:/qbSe+Zk78NR3dN5nP0HB0UxMkzOt7HcvJGt5AdHIOWnToIf12Z9:/3e+a+3dN58hAWJGSCTBf12Z9
Malware Config
Targets
-
-
Target
50e071c7c52b8f79bcc7862073b3fe0296b6e977db5b538d33e128c52d916650
-
Size
93KB
-
MD5
a676c871f859984d67661a29da7e591d
-
SHA1
645a33ab03829ae16a5a8061d3eecd45fdc98e6f
-
SHA256
50e071c7c52b8f79bcc7862073b3fe0296b6e977db5b538d33e128c52d916650
-
SHA512
00c27c8eeb4a2dac995ae17a81d52589584f8f5ed6693dd632e6e152688cf01eba3acb45821216c896bee8f5849360e44518b852073d5a8bc5c9f60039697622
-
SSDEEP
1536:/qbSe+Zk78NR3dN5nP0HB0UxMkzOt7HcvJGt5AdHIOWnToIf12Z9:/3e+a+3dN58hAWJGSCTBf12Z9
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-