General
-
Target
6e7522f5e749cffa321641fc0a298772952352f39700615b4c084d8021e96127
-
Size
2.5MB
-
Sample
221124-h87bnsgf75
-
MD5
3b549972de29e7a80e74d9d7a71f3bf9
-
SHA1
f5776802275335b4e18d685b4f462a7970f56d79
-
SHA256
6e7522f5e749cffa321641fc0a298772952352f39700615b4c084d8021e96127
-
SHA512
ee74157f4faa7bbabed11b6fd25514f8c1793f009e9d10780ff91a408d7e7035030c4efadcc3a2dc7f0381825f43cb8a559925f4179516987063d7c6efdb87a7
-
SSDEEP
49152:h1OscMN6wdBh5N5Z4E8PuXitzuS4xBoYfzdgZ6YLFz5i4U/jA0GQ3Y:h1OpMNtdBZouS4xK/hQo
Malware Config
Targets
-
-
Target
6e7522f5e749cffa321641fc0a298772952352f39700615b4c084d8021e96127
-
Size
2.5MB
-
MD5
3b549972de29e7a80e74d9d7a71f3bf9
-
SHA1
f5776802275335b4e18d685b4f462a7970f56d79
-
SHA256
6e7522f5e749cffa321641fc0a298772952352f39700615b4c084d8021e96127
-
SHA512
ee74157f4faa7bbabed11b6fd25514f8c1793f009e9d10780ff91a408d7e7035030c4efadcc3a2dc7f0381825f43cb8a559925f4179516987063d7c6efdb87a7
-
SSDEEP
49152:h1OscMN6wdBh5N5Z4E8PuXitzuS4xBoYfzdgZ6YLFz5i4U/jA0GQ3Y:h1OpMNtdBZouS4xK/hQo
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-