General
-
Target
svchost.exe
-
Size
670KB
-
Sample
200529-fypk43y49a
-
MD5
3d7e5928d707ef065f3e09bad9597ce7
-
SHA1
913ddc3b54e6c8cfc5dd097bda86b51a8960509b
-
SHA256
c7ec49d578568700b764ed296ba213fd640a168c261a21e5e0b83bf621ba7402
-
SHA512
b28ea0d5cb3bf81091957eb7a2f3159ddd2603ec4104599125df2ed0cda1751143fe21ba0ac1f5d9b05657f831663b35b86451135cd7cbe838ba1a3bf34ef7c1
Static task
static1
Behavioral task
behavioral1
Sample
svchost.exe
Resource
win7v200430
Malware Config
Targets
-
-
Target
svchost.exe
-
Size
670KB
-
MD5
3d7e5928d707ef065f3e09bad9597ce7
-
SHA1
913ddc3b54e6c8cfc5dd097bda86b51a8960509b
-
SHA256
c7ec49d578568700b764ed296ba213fd640a168c261a21e5e0b83bf621ba7402
-
SHA512
b28ea0d5cb3bf81091957eb7a2f3159ddd2603ec4104599125df2ed0cda1751143fe21ba0ac1f5d9b05657f831663b35b86451135cd7cbe838ba1a3bf34ef7c1
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Drops Chrome extension
-
Enumerates connected drives
-