General
-
Target
51af0700c97195381cf259ad801efcf332a36ebae03cb8c71ee369b84d6eafde
-
Size
552KB
-
Sample
240704-1jbskssglf
-
MD5
2fad3159f14ced981ffa9dd4dbbdd384
-
SHA1
399622fc00a029d5e88520b5df682714f82e83eb
-
SHA256
51af0700c97195381cf259ad801efcf332a36ebae03cb8c71ee369b84d6eafde
-
SHA512
78b853cf2d77547ab38c29a1493993a3ae165e0c868248a315a13e35574c86a68aad2b7587ee85a76feb6fc0d199c6791c64c15be8706caf013cbf61a8fce0c8
-
SSDEEP
12288:dXCNi9BmBDNME+R6kz29xuvWvfYrkxNzC1X4lyhXJ6frFUn:oWmvk0N9xcYzwoYJ0rCn
Malware Config
Targets
-
-
Target
51af0700c97195381cf259ad801efcf332a36ebae03cb8c71ee369b84d6eafde
-
Size
552KB
-
MD5
2fad3159f14ced981ffa9dd4dbbdd384
-
SHA1
399622fc00a029d5e88520b5df682714f82e83eb
-
SHA256
51af0700c97195381cf259ad801efcf332a36ebae03cb8c71ee369b84d6eafde
-
SHA512
78b853cf2d77547ab38c29a1493993a3ae165e0c868248a315a13e35574c86a68aad2b7587ee85a76feb6fc0d199c6791c64c15be8706caf013cbf61a8fce0c8
-
SSDEEP
12288:dXCNi9BmBDNME+R6kz29xuvWvfYrkxNzC1X4lyhXJ6frFUn:oWmvk0N9xcYzwoYJ0rCn
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-