General
-
Target
fd0a96c8883c406d51361caed96c28a0N.exe
-
Size
93KB
-
Sample
240817-rqgsqszerc
-
MD5
fd0a96c8883c406d51361caed96c28a0
-
SHA1
6d91e4dff726829aa5b611a68680576a43ea757e
-
SHA256
ac21e8d5e351fb53569808c05dae0b82eec8e3208b3aaf9545f04f1c0f37a5bd
-
SHA512
2f92c53808c4a030556f8657d11547598fc6ec2fe509d4b3ee43776f47160b1931360cfc2e6d2e7d57769c1d1856815f631c39e1d6f0619b55a664e3e2fb162f
-
SSDEEP
1536:dS2vOUHVOKZWwrgdGPiiv9vgmh7vfaOe/pwFquLFUTQnN3R9M5WLiVwt3TYTUGaF:djzhZWxivgmhbI/pqqsFUCN3R9MI+QTp
Malware Config
Targets
-
-
Target
fd0a96c8883c406d51361caed96c28a0N.exe
-
Size
93KB
-
MD5
fd0a96c8883c406d51361caed96c28a0
-
SHA1
6d91e4dff726829aa5b611a68680576a43ea757e
-
SHA256
ac21e8d5e351fb53569808c05dae0b82eec8e3208b3aaf9545f04f1c0f37a5bd
-
SHA512
2f92c53808c4a030556f8657d11547598fc6ec2fe509d4b3ee43776f47160b1931360cfc2e6d2e7d57769c1d1856815f631c39e1d6f0619b55a664e3e2fb162f
-
SSDEEP
1536:dS2vOUHVOKZWwrgdGPiiv9vgmh7vfaOe/pwFquLFUTQnN3R9M5WLiVwt3TYTUGaF:djzhZWxivgmhbI/pqqsFUCN3R9MI+QTp
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-