General
-
Target
88fd5e239a11000c0548d9e6685e7dfeeda553cd78bde1d00202e54cde0ff504
-
Size
2.1MB
-
Sample
221124-k8cheade23
-
MD5
8537e938cca3f268b2ce03a4cd4784d6
-
SHA1
4f0510ddaaeefef1d7bbae5736d4fab1360d5e31
-
SHA256
88fd5e239a11000c0548d9e6685e7dfeeda553cd78bde1d00202e54cde0ff504
-
SHA512
87ca6e232329cecefb9f655ed102eb713e8db0efacf1a014406377364eedf0fff2bd158bdc5fc92ef6a534fc37bd0a7e31fe31cfc5fb2e246f7052b37473361a
-
SSDEEP
24576:h1OYdaOPTwLleYkTVug2PiL0jHM8WK5z6Sh19BUfOD4XRt1otyBNvJvMXzGK5Ih6:h1OsOLARTQ9PimJWtShQnvQsrut
Malware Config
Targets
-
-
Target
88fd5e239a11000c0548d9e6685e7dfeeda553cd78bde1d00202e54cde0ff504
-
Size
2.1MB
-
MD5
8537e938cca3f268b2ce03a4cd4784d6
-
SHA1
4f0510ddaaeefef1d7bbae5736d4fab1360d5e31
-
SHA256
88fd5e239a11000c0548d9e6685e7dfeeda553cd78bde1d00202e54cde0ff504
-
SHA512
87ca6e232329cecefb9f655ed102eb713e8db0efacf1a014406377364eedf0fff2bd158bdc5fc92ef6a534fc37bd0a7e31fe31cfc5fb2e246f7052b37473361a
-
SSDEEP
24576:h1OYdaOPTwLleYkTVug2PiL0jHM8WK5z6Sh19BUfOD4XRt1otyBNvJvMXzGK5Ih6:h1OsOLARTQ9PimJWtShQnvQsrut
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-