General
-
Target
6ef21b0000074e998d399a729c8493bb510405e18a1fa7a8d7aedcf4b582e19b
-
Size
4.2MB
-
Sample
221124-k9ts3sde89
-
MD5
779de5389e0fa727c6005ad7333bf347
-
SHA1
152325848e0f8e0541aa007dc65bf7acd87b18c2
-
SHA256
6ef21b0000074e998d399a729c8493bb510405e18a1fa7a8d7aedcf4b582e19b
-
SHA512
d8bc53d32d96554d1ce257e5737093ff80e38b17db0eee1579680779ad9cec91a5e9da6c682fa874a514b903fa6b9c5bef7d472679a49bf278547bec23c51cb2
-
SSDEEP
49152:Mp4mPfK6T/S1DjsB1A0wzpOnfwZU5BcumR9qFqslWaNTmClQmEbp7Yuwnrj:Mam9G1gcptqoqNTFDElZwr
Malware Config
Targets
-
-
Target
6ef21b0000074e998d399a729c8493bb510405e18a1fa7a8d7aedcf4b582e19b
-
Size
4.2MB
-
MD5
779de5389e0fa727c6005ad7333bf347
-
SHA1
152325848e0f8e0541aa007dc65bf7acd87b18c2
-
SHA256
6ef21b0000074e998d399a729c8493bb510405e18a1fa7a8d7aedcf4b582e19b
-
SHA512
d8bc53d32d96554d1ce257e5737093ff80e38b17db0eee1579680779ad9cec91a5e9da6c682fa874a514b903fa6b9c5bef7d472679a49bf278547bec23c51cb2
-
SSDEEP
49152:Mp4mPfK6T/S1DjsB1A0wzpOnfwZU5BcumR9qFqslWaNTmClQmEbp7Yuwnrj:Mam9G1gcptqoqNTFDElZwr
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-