General
-
Target
f9a4d19087664ab82cdba9b69d6b2851cb4ff7dafd2ca341c7f5a177e9e6b596
-
Size
932KB
-
Sample
221124-t6t44sba2v
-
MD5
c4e2828ed8f33515631db097cb9ab2c4
-
SHA1
1de9953315c35020fb2d85059322446621b9ba79
-
SHA256
f9a4d19087664ab82cdba9b69d6b2851cb4ff7dafd2ca341c7f5a177e9e6b596
-
SHA512
55f3f01d38cc0a801b12fc1105183462da6fd19c3d1bbfa2f696fb0c1455b40e0163e5ae14057a5d6c96d1f5351e1ddc6de4b38ff72f136c723ab5fe3a702176
-
SSDEEP
24576:h1OYdaOzCZ/iWCvu/2sWsJA/jlt+DHhsH:h1OshCpYO/dJJDHhsH
Malware Config
Targets
-
-
Target
f9a4d19087664ab82cdba9b69d6b2851cb4ff7dafd2ca341c7f5a177e9e6b596
-
Size
932KB
-
MD5
c4e2828ed8f33515631db097cb9ab2c4
-
SHA1
1de9953315c35020fb2d85059322446621b9ba79
-
SHA256
f9a4d19087664ab82cdba9b69d6b2851cb4ff7dafd2ca341c7f5a177e9e6b596
-
SHA512
55f3f01d38cc0a801b12fc1105183462da6fd19c3d1bbfa2f696fb0c1455b40e0163e5ae14057a5d6c96d1f5351e1ddc6de4b38ff72f136c723ab5fe3a702176
-
SSDEEP
24576:h1OYdaOzCZ/iWCvu/2sWsJA/jlt+DHhsH:h1OshCpYO/dJJDHhsH
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-