General
-
Target
0d05f6a5c931675600079450394a7eca9db4a0a2c2ee48e020f0579d3a6283ea
-
Size
1.0MB
-
Sample
220529-1xca9sbfh4
-
MD5
039f8c3e5b12ad79d415275835be77f4
-
SHA1
ac92c73b8a5751c6469a8929e98d3c79de2af849
-
SHA256
0d05f6a5c931675600079450394a7eca9db4a0a2c2ee48e020f0579d3a6283ea
-
SHA512
bf6ee333249bd6cd1eaa901a31ac468da3cc6be3eda83ef1ce52e4ca49ecb76282215cf57594b7645e2b6090d683ee0d9c38a3ac73f5dce176f09f1a9ef72adb
Malware Config
Targets
-
-
Target
0d05f6a5c931675600079450394a7eca9db4a0a2c2ee48e020f0579d3a6283ea
-
Size
1.0MB
-
MD5
039f8c3e5b12ad79d415275835be77f4
-
SHA1
ac92c73b8a5751c6469a8929e98d3c79de2af849
-
SHA256
0d05f6a5c931675600079450394a7eca9db4a0a2c2ee48e020f0579d3a6283ea
-
SHA512
bf6ee333249bd6cd1eaa901a31ac468da3cc6be3eda83ef1ce52e4ca49ecb76282215cf57594b7645e2b6090d683ee0d9c38a3ac73f5dce176f09f1a9ef72adb
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-