General
-
Target
4a7854848cdf4edd3ccb663489644b0dbbc323960869968f4fbedb358ba34202
-
Size
2.5MB
-
Sample
221124-jhwmxscc6y
-
MD5
d7d492a9c1f94b971d60e072d20486ef
-
SHA1
31698354bb9fe6ae87ac8191f1fff665afdee364
-
SHA256
4a7854848cdf4edd3ccb663489644b0dbbc323960869968f4fbedb358ba34202
-
SHA512
f13ec6521bec4e8d813d1dea262bf4df728a139631b7974f48d2d63cd0ae3f5fc80070f554018190f88de5f9c798d0f5fff47dda91208d60a0f43cdb5aaf5e6a
-
SSDEEP
49152:h1OszMN6wdBh5N5Z4E8PuXitzuS4xBoYfzdgZ6YLFz5i4U/jA0GQ3f:h1OyMNtdBZouS4xK/hQv
Malware Config
Targets
-
-
Target
4a7854848cdf4edd3ccb663489644b0dbbc323960869968f4fbedb358ba34202
-
Size
2.5MB
-
MD5
d7d492a9c1f94b971d60e072d20486ef
-
SHA1
31698354bb9fe6ae87ac8191f1fff665afdee364
-
SHA256
4a7854848cdf4edd3ccb663489644b0dbbc323960869968f4fbedb358ba34202
-
SHA512
f13ec6521bec4e8d813d1dea262bf4df728a139631b7974f48d2d63cd0ae3f5fc80070f554018190f88de5f9c798d0f5fff47dda91208d60a0f43cdb5aaf5e6a
-
SSDEEP
49152:h1OszMN6wdBh5N5Z4E8PuXitzuS4xBoYfzdgZ6YLFz5i4U/jA0GQ3f:h1OyMNtdBZouS4xK/hQv
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-