General
-
Target
95d40f5e7584aaa8df75b7ae420cfe98702a6a2a498558f1ff9aac02087ad857
-
Size
264KB
-
Sample
240709-k91xdsygnf
-
MD5
5dc6df8fcb77a829557c591d8f0711f7
-
SHA1
cb6d58da5284de15e536217540c6e4b96b4c38b0
-
SHA256
95d40f5e7584aaa8df75b7ae420cfe98702a6a2a498558f1ff9aac02087ad857
-
SHA512
8b890e1f9f0a84ad1d195100286538fe8ba586cfe9fa305b1fb9cee12d7cd3c05dcc8082f8b3afb4d628fd211e8650dbc3106a5be78dbe390337c63b20a6ea76
-
SSDEEP
3072:eXfZQioJK+LRkgUA1nQZwFGVO4Mqg+WDY:sALRp1nQ4QLd
Malware Config
Targets
-
-
Target
95d40f5e7584aaa8df75b7ae420cfe98702a6a2a498558f1ff9aac02087ad857
-
Size
264KB
-
MD5
5dc6df8fcb77a829557c591d8f0711f7
-
SHA1
cb6d58da5284de15e536217540c6e4b96b4c38b0
-
SHA256
95d40f5e7584aaa8df75b7ae420cfe98702a6a2a498558f1ff9aac02087ad857
-
SHA512
8b890e1f9f0a84ad1d195100286538fe8ba586cfe9fa305b1fb9cee12d7cd3c05dcc8082f8b3afb4d628fd211e8650dbc3106a5be78dbe390337c63b20a6ea76
-
SSDEEP
3072:eXfZQioJK+LRkgUA1nQZwFGVO4Mqg+WDY:sALRp1nQ4QLd
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-