General
-
Target
a1710eaf2f8ebb20007c5b5a7d019e250d51a3378152eee746e9d649c49fcfef
-
Size
53KB
-
Sample
240523-nefvhseb7t
-
MD5
15a159c8edd79b20b72594b12d64ad84
-
SHA1
0f60fd3ca331a4c4e2c9f4aeced30338d58c6f5b
-
SHA256
a1710eaf2f8ebb20007c5b5a7d019e250d51a3378152eee746e9d649c49fcfef
-
SHA512
f865d979d824700260d1a4bd0ea3d2ff36da0fc102fc61d97e8aac16bdfbef6a6192628d8777788d1781ca41886f42848212d8f3c1b41f3eca06ce960ae64e40
-
SSDEEP
768:rlwFElOIEvzMXqtwp/lttaL7HP4JLAWHQIRgmRTXCAc+0QhW/HVGKiXJijGWp:rGFaYzMXqtGNtty1yVumRTTZphWNFaWp
Malware Config
Targets
-
-
Target
a1710eaf2f8ebb20007c5b5a7d019e250d51a3378152eee746e9d649c49fcfef
-
Size
53KB
-
MD5
15a159c8edd79b20b72594b12d64ad84
-
SHA1
0f60fd3ca331a4c4e2c9f4aeced30338d58c6f5b
-
SHA256
a1710eaf2f8ebb20007c5b5a7d019e250d51a3378152eee746e9d649c49fcfef
-
SHA512
f865d979d824700260d1a4bd0ea3d2ff36da0fc102fc61d97e8aac16bdfbef6a6192628d8777788d1781ca41886f42848212d8f3c1b41f3eca06ce960ae64e40
-
SSDEEP
768:rlwFElOIEvzMXqtwp/lttaL7HP4JLAWHQIRgmRTXCAc+0QhW/HVGKiXJijGWp:rGFaYzMXqtGNtty1yVumRTTZphWNFaWp
Score8/10-
Drops file in Drivers directory
-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-