General
-
Target
db6515cef4de7521eee799118d271cfd6fe544bda002cecf9516ed3e1366a4e6
-
Size
2.1MB
-
Sample
221123-2fz7fach8w
-
MD5
67cc919d5297305054717a7d9af4dab8
-
SHA1
52f68d442a8ba1b9ea379b55cec463b78a321522
-
SHA256
db6515cef4de7521eee799118d271cfd6fe544bda002cecf9516ed3e1366a4e6
-
SHA512
297207f2b31e19e49712ab5ba35398c31b5bf785409aa4f63a6c2bc1fe3b53ee4bd4c0a037deca1d70b579124eb14385d74dca074b0058d87f1ec4be717421d0
-
SSDEEP
49152:h1Os6hvaZG1MVEtzijkTvu2x/uw4B8FHFF6Z:h1OlvaxMziy3g
Malware Config
Targets
-
-
Target
db6515cef4de7521eee799118d271cfd6fe544bda002cecf9516ed3e1366a4e6
-
Size
2.1MB
-
MD5
67cc919d5297305054717a7d9af4dab8
-
SHA1
52f68d442a8ba1b9ea379b55cec463b78a321522
-
SHA256
db6515cef4de7521eee799118d271cfd6fe544bda002cecf9516ed3e1366a4e6
-
SHA512
297207f2b31e19e49712ab5ba35398c31b5bf785409aa4f63a6c2bc1fe3b53ee4bd4c0a037deca1d70b579124eb14385d74dca074b0058d87f1ec4be717421d0
-
SSDEEP
49152:h1Os6hvaZG1MVEtzijkTvu2x/uw4B8FHFF6Z:h1OlvaxMziy3g
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-