General
-
Target
6b97172374574fd6c9bba69f1d62d323cfbf16300b9c7d9fdfd745469bb6381c
-
Size
2.1MB
-
Sample
221123-vf4fjagh85
-
MD5
2194905763e48403264baeb4c66eaa49
-
SHA1
c7edad0e0cae60005976174a4cb087d85e94804c
-
SHA256
6b97172374574fd6c9bba69f1d62d323cfbf16300b9c7d9fdfd745469bb6381c
-
SHA512
f62f66a0cc2be30e46a0cde11c5c538c86193e6382284f427398863a3bf09327348d9a1b29c7865a32f8e4f17ff36be7cff87afb91aedd06561fb500297ec714
-
SSDEEP
49152:h1OswAxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3w:h1OJAxib7CqWfTAeP2vaDhtSdpV
Malware Config
Targets
-
-
Target
6b97172374574fd6c9bba69f1d62d323cfbf16300b9c7d9fdfd745469bb6381c
-
Size
2.1MB
-
MD5
2194905763e48403264baeb4c66eaa49
-
SHA1
c7edad0e0cae60005976174a4cb087d85e94804c
-
SHA256
6b97172374574fd6c9bba69f1d62d323cfbf16300b9c7d9fdfd745469bb6381c
-
SHA512
f62f66a0cc2be30e46a0cde11c5c538c86193e6382284f427398863a3bf09327348d9a1b29c7865a32f8e4f17ff36be7cff87afb91aedd06561fb500297ec714
-
SSDEEP
49152:h1OswAxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3w:h1OJAxib7CqWfTAeP2vaDhtSdpV
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-