General
-
Target
fec7c06bf4e8017833dd06f3b4141624db4732f903b5b202eb3bd8737dd5daf5
-
Size
2.5MB
-
Sample
221124-twge9sfa77
-
MD5
dd28742c581e15a101c2abf92063d2fb
-
SHA1
4eddf1380f5099837ccc5f2ab8be4ac344497de1
-
SHA256
fec7c06bf4e8017833dd06f3b4141624db4732f903b5b202eb3bd8737dd5daf5
-
SHA512
a831fb9872ddb223673f5db6bb21db0e1d014aad57e802a094843bb77de0c4cef53e248392baf6adc9d4e4d58cd22345555d1cc47e94c04ed36ed19b05c4a311
-
SSDEEP
49152:h1OsSAQ+1ho2H8swSCCwwFB9nfFVDRBTY/3X5wRLCr56JK8xf:h1OwQzVCwJ/3CRLCrY8w
Malware Config
Targets
-
-
Target
fec7c06bf4e8017833dd06f3b4141624db4732f903b5b202eb3bd8737dd5daf5
-
Size
2.5MB
-
MD5
dd28742c581e15a101c2abf92063d2fb
-
SHA1
4eddf1380f5099837ccc5f2ab8be4ac344497de1
-
SHA256
fec7c06bf4e8017833dd06f3b4141624db4732f903b5b202eb3bd8737dd5daf5
-
SHA512
a831fb9872ddb223673f5db6bb21db0e1d014aad57e802a094843bb77de0c4cef53e248392baf6adc9d4e4d58cd22345555d1cc47e94c04ed36ed19b05c4a311
-
SSDEEP
49152:h1OsSAQ+1ho2H8swSCCwwFB9nfFVDRBTY/3X5wRLCr56JK8xf:h1OwQzVCwJ/3CRLCrY8w
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-