General
-
Target
b22d473e7845d34eb2d5ecfc078c7807f85c3ba5c4f15fd78d150075c6bdd41d
-
Size
931KB
-
Sample
221124-l4mm9afe44
-
MD5
a00ef1164391c70d11ed0e99b2b68641
-
SHA1
e4bcd94be4382a34fb1106fcc7e4be8d3f7d671b
-
SHA256
b22d473e7845d34eb2d5ecfc078c7807f85c3ba5c4f15fd78d150075c6bdd41d
-
SHA512
6e60370378e9b68cc55ee2c629dd27474e4ed64b5fdc12d2179c67812dac4acc4928a8c5761612a646a9012a57768f8282189fe5c376ead2ae07c07878a228e3
-
SSDEEP
24576:h1OYdaOQMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfY:h1OsCMWyUQ+GUVFIcHPvpfY
Malware Config
Targets
-
-
Target
b22d473e7845d34eb2d5ecfc078c7807f85c3ba5c4f15fd78d150075c6bdd41d
-
Size
931KB
-
MD5
a00ef1164391c70d11ed0e99b2b68641
-
SHA1
e4bcd94be4382a34fb1106fcc7e4be8d3f7d671b
-
SHA256
b22d473e7845d34eb2d5ecfc078c7807f85c3ba5c4f15fd78d150075c6bdd41d
-
SHA512
6e60370378e9b68cc55ee2c629dd27474e4ed64b5fdc12d2179c67812dac4acc4928a8c5761612a646a9012a57768f8282189fe5c376ead2ae07c07878a228e3
-
SSDEEP
24576:h1OYdaOQMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfY:h1OsCMWyUQ+GUVFIcHPvpfY
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-