General
-
Target
2ddcd41a485bc4a23936c2e5784c788327915cf8a30fc29a8f6b46810f6b1f63
-
Size
576KB
-
Sample
221123-xnsp4sae6x
-
MD5
445cc9b92186b89305a42467400caa30
-
SHA1
08ce21ff1111657749918e988b54da6e74223d2b
-
SHA256
2ddcd41a485bc4a23936c2e5784c788327915cf8a30fc29a8f6b46810f6b1f63
-
SHA512
256e971b3f49cc128379d18b1f654cbc932e0bb35313877c5cd5e2809bb8eafe0a577042e4cec416fd6d99a2fe00166cda87f6c7edfde44863537b0180d1aabd
-
SSDEEP
12288:3oXMafq2LgHE8G5Hg2US0igmmfoj1CJdP0XA54QHw:OfOHE84XUS0RrL0XA54QQ
Malware Config
Targets
-
-
Target
2ddcd41a485bc4a23936c2e5784c788327915cf8a30fc29a8f6b46810f6b1f63
-
Size
576KB
-
MD5
445cc9b92186b89305a42467400caa30
-
SHA1
08ce21ff1111657749918e988b54da6e74223d2b
-
SHA256
2ddcd41a485bc4a23936c2e5784c788327915cf8a30fc29a8f6b46810f6b1f63
-
SHA512
256e971b3f49cc128379d18b1f654cbc932e0bb35313877c5cd5e2809bb8eafe0a577042e4cec416fd6d99a2fe00166cda87f6c7edfde44863537b0180d1aabd
-
SSDEEP
12288:3oXMafq2LgHE8G5Hg2US0igmmfoj1CJdP0XA54QHw:OfOHE84XUS0RrL0XA54QQ
Score8/10-
Disables taskbar notifications via registry modification
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-