General
-
Target
d6ea0782a3c00d0c291c2ff0621383c58bbe738c42d1fc8fbf6e5cb56d6054eb
-
Size
924KB
-
Sample
221124-ncgn2add7t
-
MD5
baa888798b929faa52585239d4039271
-
SHA1
e747e48afc4269ba84cf0c74a8e5745173cb1ff5
-
SHA256
d6ea0782a3c00d0c291c2ff0621383c58bbe738c42d1fc8fbf6e5cb56d6054eb
-
SHA512
673d3baf9e0e419713769b9fdc72cb698e21085736268baaa676dbd017e122e785e06f9e6aa7dca7cdba88f84a3e9e79d32123f505bd962a81118dbbb9366802
-
SSDEEP
24576:h1OYdaOlfC5S9N6w6EVX1Lh+mN5Z4E8IlIyYuX/:h1OsAMN6wdBh5N5Z4E8PuX/
Malware Config
Targets
-
-
Target
d6ea0782a3c00d0c291c2ff0621383c58bbe738c42d1fc8fbf6e5cb56d6054eb
-
Size
924KB
-
MD5
baa888798b929faa52585239d4039271
-
SHA1
e747e48afc4269ba84cf0c74a8e5745173cb1ff5
-
SHA256
d6ea0782a3c00d0c291c2ff0621383c58bbe738c42d1fc8fbf6e5cb56d6054eb
-
SHA512
673d3baf9e0e419713769b9fdc72cb698e21085736268baaa676dbd017e122e785e06f9e6aa7dca7cdba88f84a3e9e79d32123f505bd962a81118dbbb9366802
-
SSDEEP
24576:h1OYdaOlfC5S9N6w6EVX1Lh+mN5Z4E8IlIyYuX/:h1OsAMN6wdBh5N5Z4E8PuX/
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-