General
-
Target
41677d0c5cacacdc62ec2709754e0050N.exe
-
Size
477KB
-
Sample
240707-feadqstgmk
-
MD5
41677d0c5cacacdc62ec2709754e0050
-
SHA1
ee17bb62351262df44787a78df0b2e09da8fca9a
-
SHA256
09ac6c43dd223f809904b6f3593cb3f91f8900eb1063ab63f45a8804d342f9b6
-
SHA512
8e0077104f7eabc117b9d1a94799520152740930b1344fce1158a1216be43f4848c8c1d03ab3745b1e2bfa6ea9bea3a59012e6f3936ef0b1cd6db5d92a9df896
-
SSDEEP
12288:dXCNi9Bp00bhk4a2oaU03cWIHJYjN6e/nbp6b:oWeKk4a29U0kpheDwb
Malware Config
Targets
-
-
Target
41677d0c5cacacdc62ec2709754e0050N.exe
-
Size
477KB
-
MD5
41677d0c5cacacdc62ec2709754e0050
-
SHA1
ee17bb62351262df44787a78df0b2e09da8fca9a
-
SHA256
09ac6c43dd223f809904b6f3593cb3f91f8900eb1063ab63f45a8804d342f9b6
-
SHA512
8e0077104f7eabc117b9d1a94799520152740930b1344fce1158a1216be43f4848c8c1d03ab3745b1e2bfa6ea9bea3a59012e6f3936ef0b1cd6db5d92a9df896
-
SSDEEP
12288:dXCNi9Bp00bhk4a2oaU03cWIHJYjN6e/nbp6b:oWeKk4a29U0kpheDwb
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-