General
-
Target
d74c32dda7f383bda09974f82472dcf44adc044f1263bf9ab5ea1b932aa2d76f
-
Size
2.1MB
-
Sample
221123-s8hcnagd31
-
MD5
1d8e70b6e092e69091e000fdc63e5be7
-
SHA1
e3ea39eb98e043d78ac5477c921a183a8a8d09af
-
SHA256
d74c32dda7f383bda09974f82472dcf44adc044f1263bf9ab5ea1b932aa2d76f
-
SHA512
1847351e82cc64dde664b1efbabf18ad596765183b0015863a5f783261f1ead37c5675d72942bb51598e3c57b12425447a82961b56a6a999e514309325e421b8
-
SSDEEP
49152:h1OsLAxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3y:h1O0Axib7CqWfTAeP2vaDhtSdpj
Malware Config
Targets
-
-
Target
d74c32dda7f383bda09974f82472dcf44adc044f1263bf9ab5ea1b932aa2d76f
-
Size
2.1MB
-
MD5
1d8e70b6e092e69091e000fdc63e5be7
-
SHA1
e3ea39eb98e043d78ac5477c921a183a8a8d09af
-
SHA256
d74c32dda7f383bda09974f82472dcf44adc044f1263bf9ab5ea1b932aa2d76f
-
SHA512
1847351e82cc64dde664b1efbabf18ad596765183b0015863a5f783261f1ead37c5675d72942bb51598e3c57b12425447a82961b56a6a999e514309325e421b8
-
SSDEEP
49152:h1OsLAxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3y:h1O0Axib7CqWfTAeP2vaDhtSdpj
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-