General
-
Target
cde644dae574499f6533fa29e2f2759b18584345a73729ab38e403339561744e
-
Size
2.1MB
-
Sample
221124-j555wadg7z
-
MD5
30a819452bf4cf5d76a1a7892c13c091
-
SHA1
e46ea9bfa27919632b7faff5ef97c1eadd071bf3
-
SHA256
cde644dae574499f6533fa29e2f2759b18584345a73729ab38e403339561744e
-
SHA512
86984ece412835235c0f929cf711ed63c26bd0067f7ff00d3e6408cc6fd62c01df2accb16320a966188e6000665a0b81be7dc53a52e249a1d032514e6f74e79a
-
SSDEEP
49152:h1OsVl9RJLu6vcW6hGkaVR7QSiN/tObJmZcqYUuRTp:h1OGrVOhGRkSixtKDn
Malware Config
Targets
-
-
Target
cde644dae574499f6533fa29e2f2759b18584345a73729ab38e403339561744e
-
Size
2.1MB
-
MD5
30a819452bf4cf5d76a1a7892c13c091
-
SHA1
e46ea9bfa27919632b7faff5ef97c1eadd071bf3
-
SHA256
cde644dae574499f6533fa29e2f2759b18584345a73729ab38e403339561744e
-
SHA512
86984ece412835235c0f929cf711ed63c26bd0067f7ff00d3e6408cc6fd62c01df2accb16320a966188e6000665a0b81be7dc53a52e249a1d032514e6f74e79a
-
SSDEEP
49152:h1OsVl9RJLu6vcW6hGkaVR7QSiN/tObJmZcqYUuRTp:h1OGrVOhGRkSixtKDn
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-