General
-
Target
c48794a35e1fb0a3ba754bdb537491bf47050ca0a5e79ad2983c6862668094d6
-
Size
67KB
-
Sample
240703-qyzg3szalh
-
MD5
0e8d8e74b498e54aca8c22b1a7af3a9c
-
SHA1
a467ef217dfc49b87d73ef75b59fee8bc7447785
-
SHA256
c48794a35e1fb0a3ba754bdb537491bf47050ca0a5e79ad2983c6862668094d6
-
SHA512
2aaa5bad9fe5cfca757286604cd8bffe8a0c1a120aa1a032ac61e6d52d2228d8130f8783f10ae48912e17cc371080d4ae9ee95e59d413ed047b292b8aafc61a9
-
SSDEEP
1536:2AaYzMXqtGNttyeiZnZLYm1Xb4yzwC132n6wkj7:2AaY46tGNttyeQLYm1Xb4yzjwkH
Malware Config
Targets
-
-
Target
c48794a35e1fb0a3ba754bdb537491bf47050ca0a5e79ad2983c6862668094d6
-
Size
67KB
-
MD5
0e8d8e74b498e54aca8c22b1a7af3a9c
-
SHA1
a467ef217dfc49b87d73ef75b59fee8bc7447785
-
SHA256
c48794a35e1fb0a3ba754bdb537491bf47050ca0a5e79ad2983c6862668094d6
-
SHA512
2aaa5bad9fe5cfca757286604cd8bffe8a0c1a120aa1a032ac61e6d52d2228d8130f8783f10ae48912e17cc371080d4ae9ee95e59d413ed047b292b8aafc61a9
-
SSDEEP
1536:2AaYzMXqtGNttyeiZnZLYm1Xb4yzwC132n6wkj7:2AaY46tGNttyeQLYm1Xb4yzjwkH
Score8/10-
Drops file in Drivers directory
-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-