General
-
Target
065b1b6b7c34cf8e7ac0cc5136cc6f372a4727d3c1364c2fc034146b5c8b276e
-
Size
1.8MB
-
Sample
240925-lz98raygmr
-
MD5
cec500c3d3ae8cb95137ad929e01c40e
-
SHA1
875e98ff5570cd4593ff1d105b693703c82c5f5f
-
SHA256
065b1b6b7c34cf8e7ac0cc5136cc6f372a4727d3c1364c2fc034146b5c8b276e
-
SHA512
99aa08020a0a8233ab9b3f95a1b9c34149b9ca8e3780d892db33da56e51261f45af25e012be6cf859087fb29e832a7d730d436203d027c4d9069ef06bc1ec0a5
-
SSDEEP
24576:F3vLR2VhZBJ905EmMyPnQxhe4KLwvHYgUBoHyC/hR:F3dUZTHuLAl
Malware Config
Targets
-
-
Target
065b1b6b7c34cf8e7ac0cc5136cc6f372a4727d3c1364c2fc034146b5c8b276e
-
Size
1.8MB
-
MD5
cec500c3d3ae8cb95137ad929e01c40e
-
SHA1
875e98ff5570cd4593ff1d105b693703c82c5f5f
-
SHA256
065b1b6b7c34cf8e7ac0cc5136cc6f372a4727d3c1364c2fc034146b5c8b276e
-
SHA512
99aa08020a0a8233ab9b3f95a1b9c34149b9ca8e3780d892db33da56e51261f45af25e012be6cf859087fb29e832a7d730d436203d027c4d9069ef06bc1ec0a5
-
SSDEEP
24576:F3vLR2VhZBJ905EmMyPnQxhe4KLwvHYgUBoHyC/hR:F3dUZTHuLAl
Score8/10-
Drops file in Drivers directory
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1