General
-
Target
ConsoleApplication2.exe
-
Size
4.4MB
-
Sample
240608-wbnd7adh7z
-
MD5
0ca8aa48b388cea42d4bb0ce88803812
-
SHA1
ceaa6b628cbf30643f949ebc7b2f4ff23f6ea5d8
-
SHA256
7064657d8e05bb053fa2b4ef7a62f7beb5e5d9cdf8ea9fb7a4843b8b7f75ebd4
-
SHA512
3012f06e214c9c5a332c239b51ad28eed7c8deb3c695ce722d4a69049ad5000db189a3ee5a892f36a0b364c2b036552fa848d09121e54b5fde4f76ee63e658f3
-
SSDEEP
49152:sNvbISk4hciT/TbZJtvrOxPP1f1RcH8/8MmoF37whddkK0ZdfNN3PPETzApHLN+z:sNvUSk4hxTDUtR8ifTEgH
Malware Config
Targets
-
-
Target
ConsoleApplication2.exe
-
Size
4.4MB
-
MD5
0ca8aa48b388cea42d4bb0ce88803812
-
SHA1
ceaa6b628cbf30643f949ebc7b2f4ff23f6ea5d8
-
SHA256
7064657d8e05bb053fa2b4ef7a62f7beb5e5d9cdf8ea9fb7a4843b8b7f75ebd4
-
SHA512
3012f06e214c9c5a332c239b51ad28eed7c8deb3c695ce722d4a69049ad5000db189a3ee5a892f36a0b364c2b036552fa848d09121e54b5fde4f76ee63e658f3
-
SSDEEP
49152:sNvbISk4hciT/TbZJtvrOxPP1f1RcH8/8MmoF37whddkK0ZdfNN3PPETzApHLN+z:sNvUSk4hxTDUtR8ifTEgH
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-