General
-
Target
2a08069747652ff5c904ff8179f274eae058f0a86c6a555eaf0d33fe67341a89
-
Size
931KB
-
Sample
221124-nz5z5sbg95
-
MD5
062f0d2531b7e7decb71ec2c2a07c755
-
SHA1
44bf39fd946b50f5c9412bd0f5a71eb3f2279253
-
SHA256
2a08069747652ff5c904ff8179f274eae058f0a86c6a555eaf0d33fe67341a89
-
SHA512
f7eb072b4b48cc7b38fb6042fbdfae76f815011f66c17fb61e7b58187351fb787d4dc4ae87b9a2bec35204a409da69a303dd4a3b611694e83a14dd6c553330b4
-
SSDEEP
24576:h1OYdaOMMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfn:h1OsGMWyUQ+GUVFIcHPvpfn
Malware Config
Targets
-
-
Target
2a08069747652ff5c904ff8179f274eae058f0a86c6a555eaf0d33fe67341a89
-
Size
931KB
-
MD5
062f0d2531b7e7decb71ec2c2a07c755
-
SHA1
44bf39fd946b50f5c9412bd0f5a71eb3f2279253
-
SHA256
2a08069747652ff5c904ff8179f274eae058f0a86c6a555eaf0d33fe67341a89
-
SHA512
f7eb072b4b48cc7b38fb6042fbdfae76f815011f66c17fb61e7b58187351fb787d4dc4ae87b9a2bec35204a409da69a303dd4a3b611694e83a14dd6c553330b4
-
SSDEEP
24576:h1OYdaOMMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfn:h1OsGMWyUQ+GUVFIcHPvpfn
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-