General
-
Target
5308c57e134465b5d0ca9ff78f944fac324177fdd0b08b75a9775a8c2ad0bcd8
-
Size
931KB
-
Sample
221124-j4l1lsdf7x
-
MD5
dde64746d41bb6e8591b4643fedbe8dd
-
SHA1
2a6eb969cfdde8b27dfed8953aff6620508c63c7
-
SHA256
5308c57e134465b5d0ca9ff78f944fac324177fdd0b08b75a9775a8c2ad0bcd8
-
SHA512
200ceac83f13fddb989335b28bc0ae3c7b8f05166554a20190e64d9d4a4c494c4c5e01fffa496b1fa7c8b19c64fff7d8a2ac61defc96920b390c5b9f73575a42
-
SSDEEP
24576:h1OYdaOskVkyMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpf+:h1OsRMWyUQ+GUVFIcHPvpf+
Malware Config
Targets
-
-
Target
5308c57e134465b5d0ca9ff78f944fac324177fdd0b08b75a9775a8c2ad0bcd8
-
Size
931KB
-
MD5
dde64746d41bb6e8591b4643fedbe8dd
-
SHA1
2a6eb969cfdde8b27dfed8953aff6620508c63c7
-
SHA256
5308c57e134465b5d0ca9ff78f944fac324177fdd0b08b75a9775a8c2ad0bcd8
-
SHA512
200ceac83f13fddb989335b28bc0ae3c7b8f05166554a20190e64d9d4a4c494c4c5e01fffa496b1fa7c8b19c64fff7d8a2ac61defc96920b390c5b9f73575a42
-
SSDEEP
24576:h1OYdaOskVkyMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpf+:h1OsRMWyUQ+GUVFIcHPvpf+
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-