General
-
Target
0b281a3893829e29539412a32a42a8dd8a21cb30b905f00c10f2195f9e9fe247
-
Size
2.0MB
-
Sample
221124-f2yd3sef4v
-
MD5
cfc0e57a3d138d6f8f9e5de40f3ef50a
-
SHA1
e63b5f332c596a76662929dc79b46c1a52ae2216
-
SHA256
0b281a3893829e29539412a32a42a8dd8a21cb30b905f00c10f2195f9e9fe247
-
SHA512
bc80584a011d7fc46deecdd0bdd97b972eaa2f636291f861cc5dd2ece606abce5b07301188d070d57dfc46404fbdd2ba40da2f98d8cad9d85ab6bc06bb6ecd2e
-
SSDEEP
24576:h1OYdaOkJo99gJW4tFAlN3DdJ6RND6oSnHA5NPFmTLc4ecFgAKnMpAUM:h1Os+JooJDtFgTy5snHSUc4E3cAUM
Malware Config
Targets
-
-
Target
0b281a3893829e29539412a32a42a8dd8a21cb30b905f00c10f2195f9e9fe247
-
Size
2.0MB
-
MD5
cfc0e57a3d138d6f8f9e5de40f3ef50a
-
SHA1
e63b5f332c596a76662929dc79b46c1a52ae2216
-
SHA256
0b281a3893829e29539412a32a42a8dd8a21cb30b905f00c10f2195f9e9fe247
-
SHA512
bc80584a011d7fc46deecdd0bdd97b972eaa2f636291f861cc5dd2ece606abce5b07301188d070d57dfc46404fbdd2ba40da2f98d8cad9d85ab6bc06bb6ecd2e
-
SSDEEP
24576:h1OYdaOkJo99gJW4tFAlN3DdJ6RND6oSnHA5NPFmTLc4ecFgAKnMpAUM:h1Os+JooJDtFgTy5snHSUc4E3cAUM
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-