General
-
Target
c9cf5936ad01e80b5ffe5a1beb3e44609c4c5b66f998c833f19babc5e883ae4e
-
Size
931KB
-
Sample
221124-jlk1lahe87
-
MD5
1b3775ba0b03e9347ed447869f28baaf
-
SHA1
f7a9a23fd0dd58fb3ef9c445dada4760130ac37d
-
SHA256
c9cf5936ad01e80b5ffe5a1beb3e44609c4c5b66f998c833f19babc5e883ae4e
-
SHA512
aed45cedf9f0925e1f999001984141ffd919003b8bb829ed3e3a963961455459fa0bbf586c6eadc17588cb5508aff53da3844f4f8fd6d367ae7c6f61c04b2a08
-
SSDEEP
24576:h1OYdaOXMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfq:h1Os1MWyUQ+GUVFIcHPvpfq
Malware Config
Targets
-
-
Target
c9cf5936ad01e80b5ffe5a1beb3e44609c4c5b66f998c833f19babc5e883ae4e
-
Size
931KB
-
MD5
1b3775ba0b03e9347ed447869f28baaf
-
SHA1
f7a9a23fd0dd58fb3ef9c445dada4760130ac37d
-
SHA256
c9cf5936ad01e80b5ffe5a1beb3e44609c4c5b66f998c833f19babc5e883ae4e
-
SHA512
aed45cedf9f0925e1f999001984141ffd919003b8bb829ed3e3a963961455459fa0bbf586c6eadc17588cb5508aff53da3844f4f8fd6d367ae7c6f61c04b2a08
-
SSDEEP
24576:h1OYdaOXMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfq:h1Os1MWyUQ+GUVFIcHPvpfq
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-