General
-
Target
e1bd8f677f78f574e2f3ac0ead89ee7d2ca059265b903bdf3ff2376ff0fe8bda
-
Size
3.5MB
-
Sample
221123-s4g64ada43
-
MD5
8ca20090f9f747055a283712d0d4bf40
-
SHA1
953d1cd44eb589e975b161754d12470f65304c9a
-
SHA256
e1bd8f677f78f574e2f3ac0ead89ee7d2ca059265b903bdf3ff2376ff0fe8bda
-
SHA512
a651004107aaa19ac176af164a36e54dab358e49d234a5873171601719e64f55d00505c4f9600adf45a7037c1ad94811d6f1df600986a2108525f1feaa80f9d3
-
SSDEEP
49152:+9aAsmOTmJadWMh8BBmTsgTMMchqMoVkIBL7o2TFFTkco2L0iMVE/:gsmOTKadT8BBX8sEMskIZMOFAcpLpMW
Malware Config
Targets
-
-
Target
e1bd8f677f78f574e2f3ac0ead89ee7d2ca059265b903bdf3ff2376ff0fe8bda
-
Size
3.5MB
-
MD5
8ca20090f9f747055a283712d0d4bf40
-
SHA1
953d1cd44eb589e975b161754d12470f65304c9a
-
SHA256
e1bd8f677f78f574e2f3ac0ead89ee7d2ca059265b903bdf3ff2376ff0fe8bda
-
SHA512
a651004107aaa19ac176af164a36e54dab358e49d234a5873171601719e64f55d00505c4f9600adf45a7037c1ad94811d6f1df600986a2108525f1feaa80f9d3
-
SSDEEP
49152:+9aAsmOTmJadWMh8BBmTsgTMMchqMoVkIBL7o2TFFTkco2L0iMVE/:gsmOTKadT8BBX8sEMskIZMOFAcpLpMW
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-