General
-
Target
71b9632fc3a60654a92365e17a2db16600d9a5e61c37beadc7fc2841051154ed
-
Size
2.1MB
-
Sample
221124-ny8pmsbg48
-
MD5
54413ea3aeea72a4068780be6050c057
-
SHA1
fdd09a841c9463d2b8256f9b75a6d98a3c3ca358
-
SHA256
71b9632fc3a60654a92365e17a2db16600d9a5e61c37beadc7fc2841051154ed
-
SHA512
b2b262da12698695fb1103230a876da8d091150aee20e8d7434fe28cdb453689d066ae0ba8e1e00e3b82b3eb5bbe8dc23cfd0d0ce6457bb6e848ff5a692aa0ec
-
SSDEEP
49152:h1Os4l9RJLu6vcW6hGkaVR7QSiN/tObJmZcqYUuRTk:h1OnrVOhGRkSixtKDi
Malware Config
Targets
-
-
Target
71b9632fc3a60654a92365e17a2db16600d9a5e61c37beadc7fc2841051154ed
-
Size
2.1MB
-
MD5
54413ea3aeea72a4068780be6050c057
-
SHA1
fdd09a841c9463d2b8256f9b75a6d98a3c3ca358
-
SHA256
71b9632fc3a60654a92365e17a2db16600d9a5e61c37beadc7fc2841051154ed
-
SHA512
b2b262da12698695fb1103230a876da8d091150aee20e8d7434fe28cdb453689d066ae0ba8e1e00e3b82b3eb5bbe8dc23cfd0d0ce6457bb6e848ff5a692aa0ec
-
SSDEEP
49152:h1Os4l9RJLu6vcW6hGkaVR7QSiN/tObJmZcqYUuRTk:h1OnrVOhGRkSixtKDi
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-