General
-
Target
5fc28212f39c6a1b6e42d46d19eb72e0N.exe
-
Size
1.6MB
-
Sample
240822-d5m2eawgkg
-
MD5
5fc28212f39c6a1b6e42d46d19eb72e0
-
SHA1
fbcea66a3cd95a0c194f8f53107eb27020aa6132
-
SHA256
29ff584f466de198d55360e1d0d15741554b8294b335edaa702a0dbde4ca6780
-
SHA512
18f0c0d621a45f57a1b3d96c2f05f8c7fba5beb02a68ab08a445027d9dac25abb7de304c0a6d2f0dc6a0e98c72b3c2443904eec63448487a60b6171f9cb5c0af
-
SSDEEP
49152:VXfXR0qkrbZcFA/iBKAWPp+7S4s3gVkeiSLvoOB/9fy:pvRTkra64KAWPA7SVgzLh/w
Malware Config
Targets
-
-
Target
5fc28212f39c6a1b6e42d46d19eb72e0N.exe
-
Size
1.6MB
-
MD5
5fc28212f39c6a1b6e42d46d19eb72e0
-
SHA1
fbcea66a3cd95a0c194f8f53107eb27020aa6132
-
SHA256
29ff584f466de198d55360e1d0d15741554b8294b335edaa702a0dbde4ca6780
-
SHA512
18f0c0d621a45f57a1b3d96c2f05f8c7fba5beb02a68ab08a445027d9dac25abb7de304c0a6d2f0dc6a0e98c72b3c2443904eec63448487a60b6171f9cb5c0af
-
SSDEEP
49152:VXfXR0qkrbZcFA/iBKAWPp+7S4s3gVkeiSLvoOB/9fy:pvRTkra64KAWPA7SVgzLh/w
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-