General
-
Target
5ad82b3df896c1e60cad0d9460e5f2f486bd832effa8efd0ec089dc765af45d9
-
Size
2.1MB
-
Sample
221123-vm9wwshe32
-
MD5
1fe1fefa70a2740065f30bd47bd127d3
-
SHA1
e112e82278e29ee45ab5865e4c5dba78cdcf523b
-
SHA256
5ad82b3df896c1e60cad0d9460e5f2f486bd832effa8efd0ec089dc765af45d9
-
SHA512
08936f990d67e3bd7f7d2dddaa4465e4af5af898567200269530cf980f35d465b78234341338ecb1ce09643f59dc4f360c55fb02aa84c6890c7d58a0efc4b9df
-
SSDEEP
49152:h1OsDAxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3c:h1OGAxib7CqWfTAeP2vaDhtSdpj
Malware Config
Targets
-
-
Target
5ad82b3df896c1e60cad0d9460e5f2f486bd832effa8efd0ec089dc765af45d9
-
Size
2.1MB
-
MD5
1fe1fefa70a2740065f30bd47bd127d3
-
SHA1
e112e82278e29ee45ab5865e4c5dba78cdcf523b
-
SHA256
5ad82b3df896c1e60cad0d9460e5f2f486bd832effa8efd0ec089dc765af45d9
-
SHA512
08936f990d67e3bd7f7d2dddaa4465e4af5af898567200269530cf980f35d465b78234341338ecb1ce09643f59dc4f360c55fb02aa84c6890c7d58a0efc4b9df
-
SSDEEP
49152:h1OsDAxPqbaJ0CqWfTAeP20icuFMDoiXrBSdCIlE05XwjXr3c:h1OGAxib7CqWfTAeP2vaDhtSdpj
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-