General
-
Target
c9dd3682f37e3d6394fb30d787ad60f24d7dab5234f07edc19e5cbb2a5e05725
-
Size
5.7MB
-
Sample
240522-y48xpsfc59
-
MD5
c281217553f46ac406f26b520cad1f0b
-
SHA1
85e3b8baff69cc3df6e70a9f70670f13dae7d8b4
-
SHA256
c9dd3682f37e3d6394fb30d787ad60f24d7dab5234f07edc19e5cbb2a5e05725
-
SHA512
1f29b1fbe372f6452e8153ca10153632c6c15cca775a3a756e23ffa81e911d456ab264e82abc34f5d56db3e5ffec5988369aa7c3a7987c1f974a726d3f65dd7a
-
SSDEEP
49152:QKPv94AEsKU8ggw1g+1CART5eBiyKS3EI3wybn20DCYIHvc8ixuZm9+fWsw6dTPn:QsKUgTH2M2m9UMpu1QfLczqssnKSk
Malware Config
Targets
-
-
Target
c9dd3682f37e3d6394fb30d787ad60f24d7dab5234f07edc19e5cbb2a5e05725
-
Size
5.7MB
-
MD5
c281217553f46ac406f26b520cad1f0b
-
SHA1
85e3b8baff69cc3df6e70a9f70670f13dae7d8b4
-
SHA256
c9dd3682f37e3d6394fb30d787ad60f24d7dab5234f07edc19e5cbb2a5e05725
-
SHA512
1f29b1fbe372f6452e8153ca10153632c6c15cca775a3a756e23ffa81e911d456ab264e82abc34f5d56db3e5ffec5988369aa7c3a7987c1f974a726d3f65dd7a
-
SSDEEP
49152:QKPv94AEsKU8ggw1g+1CART5eBiyKS3EI3wybn20DCYIHvc8ixuZm9+fWsw6dTPn:QsKUgTH2M2m9UMpu1QfLczqssnKSk
Score8/10-
Drops file in Drivers directory
-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-