General
-
Target
3b0d63bf5ffd40694cca085185a6fb8eac29aa5284a6d4601f777b9b94952362
-
Size
4.1MB
-
Sample
221124-pzlf6sea78
-
MD5
e62d4ef632b64dc3f04167fc482b47b0
-
SHA1
d4766f546608d3b00e2189d406fd18319cb09760
-
SHA256
3b0d63bf5ffd40694cca085185a6fb8eac29aa5284a6d4601f777b9b94952362
-
SHA512
e05460b627cccbea92aaf4da9c738384236253fe170c2f99cd713dc516ebdd243f2b8cb281b5e96b507e5a4fd223ece5c0cdf080cc9a1761b5a189a35129e60b
-
SSDEEP
49152:PpYmvfKaT/SVDjsBVA0wzJunfwZU5BcumfKbUT9FipSya1w/PMtn8NE3I9HmLw:P6m9GVg8JpKb66aaPMtEE3IhU
Malware Config
Targets
-
-
Target
3b0d63bf5ffd40694cca085185a6fb8eac29aa5284a6d4601f777b9b94952362
-
Size
4.1MB
-
MD5
e62d4ef632b64dc3f04167fc482b47b0
-
SHA1
d4766f546608d3b00e2189d406fd18319cb09760
-
SHA256
3b0d63bf5ffd40694cca085185a6fb8eac29aa5284a6d4601f777b9b94952362
-
SHA512
e05460b627cccbea92aaf4da9c738384236253fe170c2f99cd713dc516ebdd243f2b8cb281b5e96b507e5a4fd223ece5c0cdf080cc9a1761b5a189a35129e60b
-
SSDEEP
49152:PpYmvfKaT/SVDjsBVA0wzJunfwZU5BcumfKbUT9FipSya1w/PMtn8NE3I9HmLw:P6m9GVg8JpKb66aaPMtEE3IhU
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-