General
-
Target
efee497b181419707d359bb30c491ad1a628649bd1f4cdab9e45ae70b763d63e
-
Size
2.1MB
-
Sample
221123-syj4haff4s
-
MD5
8999cb74343edefdc6f51d9abf9f6a31
-
SHA1
8f445366a91a979cac7aab45b93866d3aba35c42
-
SHA256
efee497b181419707d359bb30c491ad1a628649bd1f4cdab9e45ae70b763d63e
-
SHA512
e6ddd572924fc720fd3c14b46432bf2daeb7581e433fdc46d9bd02881078623102b4eac30a08c3c046a1d69974c3c3ba541f6e5b94122ed78a120dd60d3e473d
-
SSDEEP
49152:h1OsaAxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3X:h1O9Axib7CqWfTAeP2vaDhtSdp4
Malware Config
Targets
-
-
Target
efee497b181419707d359bb30c491ad1a628649bd1f4cdab9e45ae70b763d63e
-
Size
2.1MB
-
MD5
8999cb74343edefdc6f51d9abf9f6a31
-
SHA1
8f445366a91a979cac7aab45b93866d3aba35c42
-
SHA256
efee497b181419707d359bb30c491ad1a628649bd1f4cdab9e45ae70b763d63e
-
SHA512
e6ddd572924fc720fd3c14b46432bf2daeb7581e433fdc46d9bd02881078623102b4eac30a08c3c046a1d69974c3c3ba541f6e5b94122ed78a120dd60d3e473d
-
SSDEEP
49152:h1OsaAxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3X:h1O9Axib7CqWfTAeP2vaDhtSdp4
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-