General
-
Target
53ec719376535457f2a0bc0aa21234800c9970ca6ceec3d008537dc9571b4152
-
Size
4.4MB
-
Sample
221124-plplnsgd2x
-
MD5
30bab3ff885b97349bbddde69870e286
-
SHA1
22d6b8456489aa18918c11ba94b13c3cd7183556
-
SHA256
53ec719376535457f2a0bc0aa21234800c9970ca6ceec3d008537dc9571b4152
-
SHA512
443c241b1fccbd59e78847aec15ffe626335d8f861c8cd0c89c3575499c5b5ccdb81a25bd52a91fb155590f42be7ff83c9a50e68686635e8e08e6c726b7047b2
-
SSDEEP
49152:dYjAWsbAomDBe5vzNF3joV2FHCI/jHlaxrTVOI+F30WySJVR7T+PyW8bwfX3jFkb:TWsombcV2FHCI/jHladVz+FEVK+6fEO
Malware Config
Targets
-
-
Target
53ec719376535457f2a0bc0aa21234800c9970ca6ceec3d008537dc9571b4152
-
Size
4.4MB
-
MD5
30bab3ff885b97349bbddde69870e286
-
SHA1
22d6b8456489aa18918c11ba94b13c3cd7183556
-
SHA256
53ec719376535457f2a0bc0aa21234800c9970ca6ceec3d008537dc9571b4152
-
SHA512
443c241b1fccbd59e78847aec15ffe626335d8f861c8cd0c89c3575499c5b5ccdb81a25bd52a91fb155590f42be7ff83c9a50e68686635e8e08e6c726b7047b2
-
SSDEEP
49152:dYjAWsbAomDBe5vzNF3joV2FHCI/jHlaxrTVOI+F30WySJVR7T+PyW8bwfX3jFkb:TWsombcV2FHCI/jHladVz+FEVK+6fEO
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-