General
-
Target
c764b532fe0ec439306cfc1f9d9b9e8a8fd98c16fe44808290660eab63975746
-
Size
131KB
-
Sample
240528-l6h3vafb2x
-
MD5
9ebb6422ed10fb799b45e4c9bd7eb41f
-
SHA1
1f8925ddffbf932d421bc1bfd7b45f46c154bb02
-
SHA256
c764b532fe0ec439306cfc1f9d9b9e8a8fd98c16fe44808290660eab63975746
-
SHA512
c294a9d363dc9dd360d7838bb9662c560990bbd08e5b9166d099ff4ad5323c0d673472d092727909f046c118810841be79d42875bd4dc6a024f9e2276d41f684
-
SSDEEP
1536:/BFsrz8VuJlMXaDuiNbR8Bftg+9t/p4QAILJuCOPdvX/ZWOtnGWxlP:/Bo8ulMXaKvvgmJAIlwPxX/ZWOFrb
Malware Config
Targets
-
-
Target
c764b532fe0ec439306cfc1f9d9b9e8a8fd98c16fe44808290660eab63975746
-
Size
131KB
-
MD5
9ebb6422ed10fb799b45e4c9bd7eb41f
-
SHA1
1f8925ddffbf932d421bc1bfd7b45f46c154bb02
-
SHA256
c764b532fe0ec439306cfc1f9d9b9e8a8fd98c16fe44808290660eab63975746
-
SHA512
c294a9d363dc9dd360d7838bb9662c560990bbd08e5b9166d099ff4ad5323c0d673472d092727909f046c118810841be79d42875bd4dc6a024f9e2276d41f684
-
SSDEEP
1536:/BFsrz8VuJlMXaDuiNbR8Bftg+9t/p4QAILJuCOPdvX/ZWOtnGWxlP:/Bo8ulMXaKvvgmJAIlwPxX/ZWOFrb
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-