General
-
Target
263882e8ae297115ed8eafd8755ce27054b67907eaf923871cc1191529de2e8a
-
Size
225KB
-
Sample
240505-rn459acd7s
-
MD5
160eef0a9c90a79b2f9a392766ffa999
-
SHA1
d25554c546239646254217cdf362a5bda2830afe
-
SHA256
263882e8ae297115ed8eafd8755ce27054b67907eaf923871cc1191529de2e8a
-
SHA512
e45279a58632b08ad51af6bf4fdeae85846c1b5ab44f6e0e305e764f1e955bd9126a583235ed3484a53b26b1c4e0b7f1734a823bafaecf0d7a1392839dfee068
-
SSDEEP
3072:PqsaY46tGNttyJQ7KRCJw8KYg5zA5GsMYSxSJiN/vGss9kTBf9pAXAtPOYQwT:C846tGdyo035iMhL/vGsbTBl2wOsT
Malware Config
Targets
-
-
Target
263882e8ae297115ed8eafd8755ce27054b67907eaf923871cc1191529de2e8a
-
Size
225KB
-
MD5
160eef0a9c90a79b2f9a392766ffa999
-
SHA1
d25554c546239646254217cdf362a5bda2830afe
-
SHA256
263882e8ae297115ed8eafd8755ce27054b67907eaf923871cc1191529de2e8a
-
SHA512
e45279a58632b08ad51af6bf4fdeae85846c1b5ab44f6e0e305e764f1e955bd9126a583235ed3484a53b26b1c4e0b7f1734a823bafaecf0d7a1392839dfee068
-
SSDEEP
3072:PqsaY46tGNttyJQ7KRCJw8KYg5zA5GsMYSxSJiN/vGss9kTBf9pAXAtPOYQwT:C846tGdyo035iMhL/vGsbTBl2wOsT
Score8/10-
Drops file in Drivers directory
-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-