General
-
Target
e0d9f3b8d36e9b4a44bc093b47ba3ba80cabd7e08b3f1a64dec7e3a2c5421bac
-
Size
538KB
-
Sample
240909-ftrxbstapr
-
MD5
1b2583d84dca4708d7a0309cf1087a89
-
SHA1
cae0d1e16db95b9269b96c06caa66fa3dab99f48
-
SHA256
e0d9f3b8d36e9b4a44bc093b47ba3ba80cabd7e08b3f1a64dec7e3a2c5421bac
-
SHA512
a51b8ed6a6cf403b4b19fc7e9f22d5f60265b16cdf24a7033bc0ee0da8c31861caa212dc5fb3bf17e28842fc28a263564076ad4e9905afd483763859bafd4493
-
SSDEEP
6144:sYqdc0NkzDVATfmTIlA41EBcN3p0NIb88WsNMPaKFP3b2V122J0sL:s9J82jXccN3CNIb88WsNMP5F1k
Malware Config
Targets
-
-
Target
e0d9f3b8d36e9b4a44bc093b47ba3ba80cabd7e08b3f1a64dec7e3a2c5421bac
-
Size
538KB
-
MD5
1b2583d84dca4708d7a0309cf1087a89
-
SHA1
cae0d1e16db95b9269b96c06caa66fa3dab99f48
-
SHA256
e0d9f3b8d36e9b4a44bc093b47ba3ba80cabd7e08b3f1a64dec7e3a2c5421bac
-
SHA512
a51b8ed6a6cf403b4b19fc7e9f22d5f60265b16cdf24a7033bc0ee0da8c31861caa212dc5fb3bf17e28842fc28a263564076ad4e9905afd483763859bafd4493
-
SSDEEP
6144:sYqdc0NkzDVATfmTIlA41EBcN3p0NIb88WsNMPaKFP3b2V122J0sL:s9J82jXccN3CNIb88WsNMP5F1k
Score9/10-
Credentials from Password Stores: Credentials from Web Browsers
Malicious Access or copy of Web Browser Credential store.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-