General
-
Target
48486ac596a5b4da52f00bf0ba094f5b45829ffb3040074684dd1d63f7ade405
-
Size
400KB
-
Sample
240712-enqxeaxgpk
-
MD5
46b9bae9cdc0f3824c1f63a92db4381d
-
SHA1
325f2d5884d24cb1357c1e5e8e9785824188a944
-
SHA256
48486ac596a5b4da52f00bf0ba094f5b45829ffb3040074684dd1d63f7ade405
-
SHA512
a3c5280804e7086af5a6b475a7c5eb8531f3c19c937c7567be8668d1d14de47a2b08ac11fde693d07cfb25cf65cba5725c24e27067a1bf9845539edb6c9f3f3b
-
SSDEEP
6144:/b+aezsP2zPVz7jUBs8hqcBCi6dbfra4erJlt9A+xX1oOAisEIWmGeNkfGuYF1mx:/b+aQahVy41
Malware Config
Targets
-
-
Target
48486ac596a5b4da52f00bf0ba094f5b45829ffb3040074684dd1d63f7ade405
-
Size
400KB
-
MD5
46b9bae9cdc0f3824c1f63a92db4381d
-
SHA1
325f2d5884d24cb1357c1e5e8e9785824188a944
-
SHA256
48486ac596a5b4da52f00bf0ba094f5b45829ffb3040074684dd1d63f7ade405
-
SHA512
a3c5280804e7086af5a6b475a7c5eb8531f3c19c937c7567be8668d1d14de47a2b08ac11fde693d07cfb25cf65cba5725c24e27067a1bf9845539edb6c9f3f3b
-
SSDEEP
6144:/b+aezsP2zPVz7jUBs8hqcBCi6dbfra4erJlt9A+xX1oOAisEIWmGeNkfGuYF1mx:/b+aQahVy41
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-