General
-
Target
2186e704236b47c2268b5e251f696330N.exe
-
Size
643KB
-
Sample
240901-3ezd7awakf
-
MD5
2186e704236b47c2268b5e251f696330
-
SHA1
101fdc37baf83fed8f6f8b55f1594a13e5060c4f
-
SHA256
ece9f7bb3d56dff6b865be7804d66254865ca7211619d517a7cf35cabba05144
-
SHA512
f0b451724fe6aa486002e6c86951e0089f5bc6f7cca6cf3b0c9cc8fb55cec0e5ae428c5ce00774e7d71b6427261f37573ffe385cac023f213e438fc031fda806
-
SSDEEP
12288:D21upk5mWukhI2jFMSjysAS9X/GsfTDYrGiqNLBryHi3H2g78C9Qz1DnmQ:a1Ak5mWpI2jFM5sFzfTpi4LsHof7T9sH
Malware Config
Targets
-
-
Target
2186e704236b47c2268b5e251f696330N.exe
-
Size
643KB
-
MD5
2186e704236b47c2268b5e251f696330
-
SHA1
101fdc37baf83fed8f6f8b55f1594a13e5060c4f
-
SHA256
ece9f7bb3d56dff6b865be7804d66254865ca7211619d517a7cf35cabba05144
-
SHA512
f0b451724fe6aa486002e6c86951e0089f5bc6f7cca6cf3b0c9cc8fb55cec0e5ae428c5ce00774e7d71b6427261f37573ffe385cac023f213e438fc031fda806
-
SSDEEP
12288:D21upk5mWukhI2jFMSjysAS9X/GsfTDYrGiqNLBryHi3H2g78C9Qz1DnmQ:a1Ak5mWpI2jFM5sFzfTpi4LsHof7T9sH
Score7/10-
Deletes itself
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-