General
-
Target
97b444e77e5b3d248dcd2efef89e4f8350101e16973341e71122b472bdab3352
-
Size
2.1MB
-
Sample
221123-2ygg2sba78
-
MD5
578d785af46fd77bc95d3651fd2ed9e2
-
SHA1
2217990eee0e36f0597aea6ca6cf765ca81f2be1
-
SHA256
97b444e77e5b3d248dcd2efef89e4f8350101e16973341e71122b472bdab3352
-
SHA512
545f20ade0f70e663e553fb2a87ea7635a4b96b4722b1f8a9897ad5c1c2967c96562c0235099e41758a0a0532a881732a8dc7096b5f26b5085dadb1b5442d969
-
SSDEEP
49152:h1OsshvaZG1MVEtzijkTvu2x/uw4B8FHFF6d:h1OpvaxMziy3y
Malware Config
Targets
-
-
Target
97b444e77e5b3d248dcd2efef89e4f8350101e16973341e71122b472bdab3352
-
Size
2.1MB
-
MD5
578d785af46fd77bc95d3651fd2ed9e2
-
SHA1
2217990eee0e36f0597aea6ca6cf765ca81f2be1
-
SHA256
97b444e77e5b3d248dcd2efef89e4f8350101e16973341e71122b472bdab3352
-
SHA512
545f20ade0f70e663e553fb2a87ea7635a4b96b4722b1f8a9897ad5c1c2967c96562c0235099e41758a0a0532a881732a8dc7096b5f26b5085dadb1b5442d969
-
SSDEEP
49152:h1OsshvaZG1MVEtzijkTvu2x/uw4B8FHFF6d:h1OpvaxMziy3y
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-