General
-
Target
4974e501031e25ddd4e21beb5acdb958494eee83471b304d1ca8a0956d02a29d
-
Size
931KB
-
Sample
221124-k6b4vsdd23
-
MD5
f044a4edb9108e4ec988a0747c5c7583
-
SHA1
636298af8607a60035708710bcfb16a2ee2978e3
-
SHA256
4974e501031e25ddd4e21beb5acdb958494eee83471b304d1ca8a0956d02a29d
-
SHA512
086266637c7551b658fe3dece3d5a86b7d97697268c45ef4081c84cdf6572added5199a5b75702efbdaa6d4c179066c4690391d4fd9c3e5ba27ed9891aac1567
-
SSDEEP
24576:h1OYdaOJMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfm:h1OsrMWyUQ+GUVFIcHPvpfm
Malware Config
Targets
-
-
Target
4974e501031e25ddd4e21beb5acdb958494eee83471b304d1ca8a0956d02a29d
-
Size
931KB
-
MD5
f044a4edb9108e4ec988a0747c5c7583
-
SHA1
636298af8607a60035708710bcfb16a2ee2978e3
-
SHA256
4974e501031e25ddd4e21beb5acdb958494eee83471b304d1ca8a0956d02a29d
-
SHA512
086266637c7551b658fe3dece3d5a86b7d97697268c45ef4081c84cdf6572added5199a5b75702efbdaa6d4c179066c4690391d4fd9c3e5ba27ed9891aac1567
-
SSDEEP
24576:h1OYdaOJMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfm:h1OsrMWyUQ+GUVFIcHPvpfm
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-