General
-
Target
93995f07da5b6118738c91009014664c58c1b65997164dd44d60bd6860763ede
-
Size
4.1MB
-
Sample
221124-11vxsafe2s
-
MD5
08da211c0e6a3214251b11bf336c3642
-
SHA1
14cf04d4439d166a3ada5c7d6924b15019b3e888
-
SHA256
93995f07da5b6118738c91009014664c58c1b65997164dd44d60bd6860763ede
-
SHA512
ae0b6e7abcdd12fa669eb36da047701435bad1819db2a5d5e7a64a2b914db4a192e0bb7b49b91809aeb06a72264e8a94ce47589a3adff6f4e2473f33b687bb9c
-
SSDEEP
49152:H8/mzbJFiVnGMjQhSA0wEZlnfwZU5BcumLKbUT9Fi2uwZw/PMtn8NE3I9HtTs:H8m/kGpcZYKb6vuVPMtEE3Ihh
Malware Config
Targets
-
-
Target
93995f07da5b6118738c91009014664c58c1b65997164dd44d60bd6860763ede
-
Size
4.1MB
-
MD5
08da211c0e6a3214251b11bf336c3642
-
SHA1
14cf04d4439d166a3ada5c7d6924b15019b3e888
-
SHA256
93995f07da5b6118738c91009014664c58c1b65997164dd44d60bd6860763ede
-
SHA512
ae0b6e7abcdd12fa669eb36da047701435bad1819db2a5d5e7a64a2b914db4a192e0bb7b49b91809aeb06a72264e8a94ce47589a3adff6f4e2473f33b687bb9c
-
SSDEEP
49152:H8/mzbJFiVnGMjQhSA0wEZlnfwZU5BcumLKbUT9Fi2uwZw/PMtn8NE3I9HtTs:H8m/kGpcZYKb6vuVPMtEE3Ihh
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-