General
-
Target
ca174ee8ffe138a0ce3bcced12c75990N.exe
-
Size
1006KB
-
Sample
240715-m1yrsashkk
-
MD5
ca174ee8ffe138a0ce3bcced12c75990
-
SHA1
ea8066f6da956f54add6d35529d1df9e41df5957
-
SHA256
3ed04bf0a26118569bd11927927fa34aee4506cda05aa60c334ab198a3bb1f23
-
SHA512
15863e446cd2250434602b4c6a0f85e7d6cd18a43d5a9d7d09a0fb20bb88f80c761c58e9f9726118dcfc52bc2ab6b470cccbdc9e5f595b8b789d538de2aa9d53
-
SSDEEP
24576:86gMfDGnMnFpVwBHj08MgkQj7XtL5CSaCLVl32caR3u:5gKqMhwBHj6gkQHttCSaCVjapu
Malware Config
Targets
-
-
Target
ca174ee8ffe138a0ce3bcced12c75990N.exe
-
Size
1006KB
-
MD5
ca174ee8ffe138a0ce3bcced12c75990
-
SHA1
ea8066f6da956f54add6d35529d1df9e41df5957
-
SHA256
3ed04bf0a26118569bd11927927fa34aee4506cda05aa60c334ab198a3bb1f23
-
SHA512
15863e446cd2250434602b4c6a0f85e7d6cd18a43d5a9d7d09a0fb20bb88f80c761c58e9f9726118dcfc52bc2ab6b470cccbdc9e5f595b8b789d538de2aa9d53
-
SSDEEP
24576:86gMfDGnMnFpVwBHj08MgkQj7XtL5CSaCLVl32caR3u:5gKqMhwBHj6gkQHttCSaCVjapu
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-