General
-
Target
8c44c7d4ed3597585aad52de06b382562a46913919734ed98295f9fc095561ca
-
Size
445KB
-
Sample
240807-amgvwsydqe
-
MD5
91c9c449a0f236c332debbf3dc97e741
-
SHA1
f96884f2ea797d9748cf4a5f7a05fc27267f6dd3
-
SHA256
8c44c7d4ed3597585aad52de06b382562a46913919734ed98295f9fc095561ca
-
SHA512
cd1f893dc553fbb77fb4b175c243ed843ba95c4ce5d0e0e692010c3ac08a7237a1f948a76cbb815de018f4e4261b1e48e3e4e7c8ca4941fb3ce41fbc603c75c4
-
SSDEEP
6144:6cGBKcH1OJwyB8wUOGWh074UoaBSlT36cF71NKgSTTuG42qndKZnIdWr2fYawmEe:t4jyBgTSlb6u7GgSvuGadPvfYawmKHU1
Malware Config
Targets
-
-
Target
8c44c7d4ed3597585aad52de06b382562a46913919734ed98295f9fc095561ca
-
Size
445KB
-
MD5
91c9c449a0f236c332debbf3dc97e741
-
SHA1
f96884f2ea797d9748cf4a5f7a05fc27267f6dd3
-
SHA256
8c44c7d4ed3597585aad52de06b382562a46913919734ed98295f9fc095561ca
-
SHA512
cd1f893dc553fbb77fb4b175c243ed843ba95c4ce5d0e0e692010c3ac08a7237a1f948a76cbb815de018f4e4261b1e48e3e4e7c8ca4941fb3ce41fbc603c75c4
-
SSDEEP
6144:6cGBKcH1OJwyB8wUOGWh074UoaBSlT36cF71NKgSTTuG42qndKZnIdWr2fYawmEe:t4jyBgTSlb6u7GgSvuGadPvfYawmKHU1
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-