General
-
Target
ed9fb11e1051500558ac234692f656ee4205764168c6550ff74ebebd2187cbfb
-
Size
931KB
-
Sample
221124-pelw7sfh6z
-
MD5
b697ff626ae8d9e1db134e833587366f
-
SHA1
f4a33b5b45e66d946aa3c44578e3a9c73247c477
-
SHA256
ed9fb11e1051500558ac234692f656ee4205764168c6550ff74ebebd2187cbfb
-
SHA512
d0cd95eed439278c0f18c57d4f8cb21d9190394eee09ff51799b50e4586094f4645154274672ce44b95985d900e8c1ccb9e4ab7a4d8a02f9c13d645b1ef17c2b
-
SSDEEP
24576:h1OYdaORMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfC:h1OsTMWyUQ+GUVFIcHPvpfC
Malware Config
Targets
-
-
Target
ed9fb11e1051500558ac234692f656ee4205764168c6550ff74ebebd2187cbfb
-
Size
931KB
-
MD5
b697ff626ae8d9e1db134e833587366f
-
SHA1
f4a33b5b45e66d946aa3c44578e3a9c73247c477
-
SHA256
ed9fb11e1051500558ac234692f656ee4205764168c6550ff74ebebd2187cbfb
-
SHA512
d0cd95eed439278c0f18c57d4f8cb21d9190394eee09ff51799b50e4586094f4645154274672ce44b95985d900e8c1ccb9e4ab7a4d8a02f9c13d645b1ef17c2b
-
SSDEEP
24576:h1OYdaORMWSUbvCXEQKSqGv8VWumF6RmcJozyPvpfC:h1OsTMWyUQ+GUVFIcHPvpfC
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-