General
-
Target
349bfa61264cd1e30ee0af1687e49ed75165687ae4130577e13d9cc9ce3782bf
-
Size
1.5MB
-
Sample
221123-rzckdach2v
-
MD5
7046e209ff5847b23b8bd04e2d6f76fe
-
SHA1
0ae796deb864a47f171f93583efaa7c2f5fa5434
-
SHA256
349bfa61264cd1e30ee0af1687e49ed75165687ae4130577e13d9cc9ce3782bf
-
SHA512
9e915f3a1dd9df55b8841ef45766b904594bda0ae28a4708d7be934148a0adf4445be8241ce7751dbea92f19e1d2756084938f380746a8a437c58e99c74669aa
-
SSDEEP
24576:HS6fJHL4IpoUYaj/ybNICQZrTkuof0JQdTJ9o3oatIexCNdvvgYPw:H74DBajAUZrvofbQoaSeydv4Y4
Malware Config
Targets
-
-
Target
349bfa61264cd1e30ee0af1687e49ed75165687ae4130577e13d9cc9ce3782bf
-
Size
1.5MB
-
MD5
7046e209ff5847b23b8bd04e2d6f76fe
-
SHA1
0ae796deb864a47f171f93583efaa7c2f5fa5434
-
SHA256
349bfa61264cd1e30ee0af1687e49ed75165687ae4130577e13d9cc9ce3782bf
-
SHA512
9e915f3a1dd9df55b8841ef45766b904594bda0ae28a4708d7be934148a0adf4445be8241ce7751dbea92f19e1d2756084938f380746a8a437c58e99c74669aa
-
SSDEEP
24576:HS6fJHL4IpoUYaj/ybNICQZrTkuof0JQdTJ9o3oatIexCNdvvgYPw:H74DBajAUZrvofbQoaSeydv4Y4
Score8/10-
Executes dropped EXE
-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-