General
-
Target
41a73a90d79cbdd8f1ecc49f037de2d3376a092e857bef4f3ad7db18f0c260fa
-
Size
931KB
-
Sample
221124-jyn8sadc9v
-
MD5
8791ccc789e747597288d80c267871a7
-
SHA1
cf4eb88effb3b5a5091b8eb73ea485d3068010b4
-
SHA256
41a73a90d79cbdd8f1ecc49f037de2d3376a092e857bef4f3ad7db18f0c260fa
-
SHA512
197e79fa7353a579e3a47ccaae6e041b36429e6107a1c1583ae775e80e1639cf5fc69fffe7e9da0d1e5a3d69845e0919d38bcb2ad7851dde3f07e66a445e4b8b
-
SSDEEP
24576:h1OYdaOEMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpf3:h1OsWMWyUQ+GUVFIcHPvpf3
Malware Config
Targets
-
-
Target
41a73a90d79cbdd8f1ecc49f037de2d3376a092e857bef4f3ad7db18f0c260fa
-
Size
931KB
-
MD5
8791ccc789e747597288d80c267871a7
-
SHA1
cf4eb88effb3b5a5091b8eb73ea485d3068010b4
-
SHA256
41a73a90d79cbdd8f1ecc49f037de2d3376a092e857bef4f3ad7db18f0c260fa
-
SHA512
197e79fa7353a579e3a47ccaae6e041b36429e6107a1c1583ae775e80e1639cf5fc69fffe7e9da0d1e5a3d69845e0919d38bcb2ad7851dde3f07e66a445e4b8b
-
SSDEEP
24576:h1OYdaOEMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpf3:h1OsWMWyUQ+GUVFIcHPvpf3
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-