General
-
Target
2313bfa63b02da01c3867e88eb1a7d7bece85de60f9f8c989ca5e5560471c4b2
-
Size
220KB
-
Sample
221123-xvje1sba8w
-
MD5
52ee0e884762c680c0e8b2fe9dbff700
-
SHA1
169a40da24a7504e411e0f636963cc8c9bf88a46
-
SHA256
2313bfa63b02da01c3867e88eb1a7d7bece85de60f9f8c989ca5e5560471c4b2
-
SHA512
2fca8952de7594e981e67709c9bbe4ba88f2098627654810fe19458252740b4f46c297d3e6fe437e75f3f1210279fa758b7cbd32804f7f6f14d92a38459b92b7
-
SSDEEP
6144:AvDTs/YAS+T5wOf6Nh/mVZkcVlSSmhJMxQp4J+DUWYK/Jt:WDYFQpmVZxPsnaEmw
Malware Config
Targets
-
-
Target
2313bfa63b02da01c3867e88eb1a7d7bece85de60f9f8c989ca5e5560471c4b2
-
Size
220KB
-
MD5
52ee0e884762c680c0e8b2fe9dbff700
-
SHA1
169a40da24a7504e411e0f636963cc8c9bf88a46
-
SHA256
2313bfa63b02da01c3867e88eb1a7d7bece85de60f9f8c989ca5e5560471c4b2
-
SHA512
2fca8952de7594e981e67709c9bbe4ba88f2098627654810fe19458252740b4f46c297d3e6fe437e75f3f1210279fa758b7cbd32804f7f6f14d92a38459b92b7
-
SSDEEP
6144:AvDTs/YAS+T5wOf6Nh/mVZkcVlSSmhJMxQp4J+DUWYK/Jt:WDYFQpmVZxPsnaEmw
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-