General
-
Target
c6be71131d64d98a00a0a635ec67c526845516a4e53f240040d3592d30acbbfe
-
Size
1.2MB
-
Sample
240704-dzz4sasbrp
-
MD5
54d15f067c9b136ae5c583d2ff2901fc
-
SHA1
c7f3187261c3786ea6ff23e1dd21fbbf200dca7b
-
SHA256
c6be71131d64d98a00a0a635ec67c526845516a4e53f240040d3592d30acbbfe
-
SHA512
1f73391771dd34faf29d222ef7e62de5984e1bb8abb7cabd7cf5bcb02b07b27941f99dbf2d6764c6cb936e08f12793af216b7cf8ffc321fc4a30859df8c99192
-
SSDEEP
24576:2wlKl0zAAcHnjkpAHebsTxngo7DonOkZp1CghDNBh8a+iHaL:hvzAAcHnjkKjT5t7jypbhDNX8alO
Malware Config
Targets
-
-
Target
c6be71131d64d98a00a0a635ec67c526845516a4e53f240040d3592d30acbbfe
-
Size
1.2MB
-
MD5
54d15f067c9b136ae5c583d2ff2901fc
-
SHA1
c7f3187261c3786ea6ff23e1dd21fbbf200dca7b
-
SHA256
c6be71131d64d98a00a0a635ec67c526845516a4e53f240040d3592d30acbbfe
-
SHA512
1f73391771dd34faf29d222ef7e62de5984e1bb8abb7cabd7cf5bcb02b07b27941f99dbf2d6764c6cb936e08f12793af216b7cf8ffc321fc4a30859df8c99192
-
SSDEEP
24576:2wlKl0zAAcHnjkpAHebsTxngo7DonOkZp1CghDNBh8a+iHaL:hvzAAcHnjkKjT5t7jypbhDNX8alO
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-