General
-
Target
0e9a8da99356e892debcd6ca026ed50819ad54d56c109b8f2fb521725973304d
-
Size
3.5MB
-
Sample
240806-mx9pwaxcqp
-
MD5
0b44831c823a94fdcf6eec97d9e3ac34
-
SHA1
7ca8c16d0281998c5f7041317ee772395a4a79a0
-
SHA256
0e9a8da99356e892debcd6ca026ed50819ad54d56c109b8f2fb521725973304d
-
SHA512
2e0a44bd6953738b2ff37b8dae5323f8d82345678eb83b31cb1b6d8765181d290de963b1f598dfd98d6c86ec3f5da934e702aea3adf50906460c579b145c643c
-
SSDEEP
49152:8BY5tzuM0S2S5mLFEuVebedv9uNBb8AftK9qrO1LS9RhSq15vTNuHv/QXd9CQxMo:8+CFk/fUqrOiOc5z
Malware Config
Targets
-
-
Target
0e9a8da99356e892debcd6ca026ed50819ad54d56c109b8f2fb521725973304d
-
Size
3.5MB
-
MD5
0b44831c823a94fdcf6eec97d9e3ac34
-
SHA1
7ca8c16d0281998c5f7041317ee772395a4a79a0
-
SHA256
0e9a8da99356e892debcd6ca026ed50819ad54d56c109b8f2fb521725973304d
-
SHA512
2e0a44bd6953738b2ff37b8dae5323f8d82345678eb83b31cb1b6d8765181d290de963b1f598dfd98d6c86ec3f5da934e702aea3adf50906460c579b145c643c
-
SSDEEP
49152:8BY5tzuM0S2S5mLFEuVebedv9uNBb8AftK9qrO1LS9RhSq15vTNuHv/QXd9CQxMo:8+CFk/fUqrOiOc5z
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-