General
-
Target
cd4bb507a980ccd97b6e44dcf9037c20d8fff9bf2137e78bc5ebe9f9d391a632
-
Size
2.0MB
-
Sample
221121-3lwxmsbf67
-
MD5
d81dfb9f339bbe8a32041d9f8f775bad
-
SHA1
74a1fcd9cd67b72ce65b5c5a596c1a71c42677f5
-
SHA256
cd4bb507a980ccd97b6e44dcf9037c20d8fff9bf2137e78bc5ebe9f9d391a632
-
SHA512
716c16c8bd9f22fe257bcb9a83ccd23cfd1df8c92643f1cb23e9d73eca526a37ad2764ffe94978b1311253b0763b7af5d8b62c5b13a3e93d545d8a4a3f5b5059
-
SSDEEP
49152:h1Os+Cn3b0sdq9tVkWMq0vdovSHhXXruY:h1OOnL0sitVkWX0vVld
Malware Config
Targets
-
-
Target
cd4bb507a980ccd97b6e44dcf9037c20d8fff9bf2137e78bc5ebe9f9d391a632
-
Size
2.0MB
-
MD5
d81dfb9f339bbe8a32041d9f8f775bad
-
SHA1
74a1fcd9cd67b72ce65b5c5a596c1a71c42677f5
-
SHA256
cd4bb507a980ccd97b6e44dcf9037c20d8fff9bf2137e78bc5ebe9f9d391a632
-
SHA512
716c16c8bd9f22fe257bcb9a83ccd23cfd1df8c92643f1cb23e9d73eca526a37ad2764ffe94978b1311253b0763b7af5d8b62c5b13a3e93d545d8a4a3f5b5059
-
SSDEEP
49152:h1Os+Cn3b0sdq9tVkWMq0vdovSHhXXruY:h1OOnL0sitVkWX0vVld
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-