General
-
Target
fc5717a5981313030677bb2cc0b6e8e4bb35cdf89d6b5bb37e8534c9957027b6
-
Size
2.5MB
-
Sample
221124-t1pbnsfd33
-
MD5
a7bf83d42b445adaf0bd51f8dd8ba19f
-
SHA1
31b74718bb5f9df5af843eab94c670a34a1fcca6
-
SHA256
fc5717a5981313030677bb2cc0b6e8e4bb35cdf89d6b5bb37e8534c9957027b6
-
SHA512
e3dc438ee23953a32274c04ff99d80ae4cb1248fe12a3552ff60b0e1b3712c50fd2bb53a2224178753321b10c1368d1465db0100178105b6f98df77af8ef4650
-
SSDEEP
49152:h1Os1kyT7S7xhSCUXDejvUwpRZVSVkLhfoEenMc4zppeIifw0hZ:h1OIBJvXDvwpRZVSVIwTn
Malware Config
Targets
-
-
Target
fc5717a5981313030677bb2cc0b6e8e4bb35cdf89d6b5bb37e8534c9957027b6
-
Size
2.5MB
-
MD5
a7bf83d42b445adaf0bd51f8dd8ba19f
-
SHA1
31b74718bb5f9df5af843eab94c670a34a1fcca6
-
SHA256
fc5717a5981313030677bb2cc0b6e8e4bb35cdf89d6b5bb37e8534c9957027b6
-
SHA512
e3dc438ee23953a32274c04ff99d80ae4cb1248fe12a3552ff60b0e1b3712c50fd2bb53a2224178753321b10c1368d1465db0100178105b6f98df77af8ef4650
-
SSDEEP
49152:h1Os1kyT7S7xhSCUXDejvUwpRZVSVkLhfoEenMc4zppeIifw0hZ:h1OIBJvXDvwpRZVSVIwTn
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-