General
-
Target
fc24269e0ab6a0129ecc38c2967f6328d5978b73051b09246c2f2c652603ceb1
-
Size
2.5MB
-
Sample
221124-t15cwsaf41
-
MD5
289033e1bb13643cb77843ed0f87dabf
-
SHA1
dcacd21cf010bd733dda6d1a67fd69320632f163
-
SHA256
fc24269e0ab6a0129ecc38c2967f6328d5978b73051b09246c2f2c652603ceb1
-
SHA512
c2f5d807d60549be9d757d8d80dcd267b6e75784c45e7ba994b8652719dd9df77b1eb1b7de833b985c4570479a87b7342d687c7bf6ee5529271da86bf2562d63
-
SSDEEP
49152:h1OsnQjO6HHzayGBe/7rzNsVa5WfDm48PhGThdNjnoi:h1OCzMHcBUsc5Wf3dVj
Malware Config
Targets
-
-
Target
fc24269e0ab6a0129ecc38c2967f6328d5978b73051b09246c2f2c652603ceb1
-
Size
2.5MB
-
MD5
289033e1bb13643cb77843ed0f87dabf
-
SHA1
dcacd21cf010bd733dda6d1a67fd69320632f163
-
SHA256
fc24269e0ab6a0129ecc38c2967f6328d5978b73051b09246c2f2c652603ceb1
-
SHA512
c2f5d807d60549be9d757d8d80dcd267b6e75784c45e7ba994b8652719dd9df77b1eb1b7de833b985c4570479a87b7342d687c7bf6ee5529271da86bf2562d63
-
SSDEEP
49152:h1OsnQjO6HHzayGBe/7rzNsVa5WfDm48PhGThdNjnoi:h1OCzMHcBUsc5Wf3dVj
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-