General
-
Target
fb7d97c7117f675c1a8616f379c6d6c920610e1ffa859c1a97bf675d701b9428
-
Size
2.5MB
-
Sample
221124-t3dyqafe26
-
MD5
5d83c09a94148f92602317b6cf5c4e6c
-
SHA1
2a0debc411eb92d6fd4b32b25a821290d4198c9b
-
SHA256
fb7d97c7117f675c1a8616f379c6d6c920610e1ffa859c1a97bf675d701b9428
-
SHA512
3561ccbabc168b48bac6d866fe95c2649865adafbe2e5461d8b1e226321516dc9ea771171ff25eea19fcaf2d857604a723c7b2957ce2690b89e99807c4bc1169
-
SSDEEP
49152:h1Os05COLX7G7GRWdmohosycWMhHnOaAxNqZ0qhgU9r:h1O5JyGRBoyLY
Malware Config
Targets
-
-
Target
fb7d97c7117f675c1a8616f379c6d6c920610e1ffa859c1a97bf675d701b9428
-
Size
2.5MB
-
MD5
5d83c09a94148f92602317b6cf5c4e6c
-
SHA1
2a0debc411eb92d6fd4b32b25a821290d4198c9b
-
SHA256
fb7d97c7117f675c1a8616f379c6d6c920610e1ffa859c1a97bf675d701b9428
-
SHA512
3561ccbabc168b48bac6d866fe95c2649865adafbe2e5461d8b1e226321516dc9ea771171ff25eea19fcaf2d857604a723c7b2957ce2690b89e99807c4bc1169
-
SSDEEP
49152:h1Os05COLX7G7GRWdmohosycWMhHnOaAxNqZ0qhgU9r:h1O5JyGRBoyLY
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-