General
-
Target
fe0bc021fe3493d4653dc7e4e158e2160301b9318260b97cb8d34d2f67b61f0d
-
Size
2.5MB
-
Sample
221124-txnwqsfb53
-
MD5
645009d1c2bb349d5ff88ea473aaf9bb
-
SHA1
b822d622c06f44574c19255460ebc151e7aafe86
-
SHA256
fe0bc021fe3493d4653dc7e4e158e2160301b9318260b97cb8d34d2f67b61f0d
-
SHA512
e4eadacade02c8f7ac3fd5759a1bdd5ebf7fcdbee819dba9e388af2eb7bd2aaf3962793c11a6d9f6b2ba528a413d6e42554affbcb576234551612527ad0b6e25
-
SSDEEP
49152:h1OsuCpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bk/:h1Ogly7kNfrNq4/
Malware Config
Targets
-
-
Target
fe0bc021fe3493d4653dc7e4e158e2160301b9318260b97cb8d34d2f67b61f0d
-
Size
2.5MB
-
MD5
645009d1c2bb349d5ff88ea473aaf9bb
-
SHA1
b822d622c06f44574c19255460ebc151e7aafe86
-
SHA256
fe0bc021fe3493d4653dc7e4e158e2160301b9318260b97cb8d34d2f67b61f0d
-
SHA512
e4eadacade02c8f7ac3fd5759a1bdd5ebf7fcdbee819dba9e388af2eb7bd2aaf3962793c11a6d9f6b2ba528a413d6e42554affbcb576234551612527ad0b6e25
-
SSDEEP
49152:h1OsuCpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bk/:h1Ogly7kNfrNq4/
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-