General
-
Target
fdca1d36f086846a066ce1276c0e30944da6672563652701caeb436013241408
-
Size
2.5MB
-
Sample
221124-txz9rsad6y
-
MD5
9a371c228a73b9948ca209b93b96c302
-
SHA1
d3d9950a91ead18b92d89bcaff27d695949b5fec
-
SHA256
fdca1d36f086846a066ce1276c0e30944da6672563652701caeb436013241408
-
SHA512
59b8e224e758284e5f7c44a9e315712851a698f74a67c0407b4feff9f8d03720a78b5afa06a377b0b1f0d467502a902ed7bdfccad811fad63c80ab7d728ae464
-
SSDEEP
49152:h1OsPPHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0Hs:h1OMHVl71RnFXINxvX
Malware Config
Targets
-
-
Target
fdca1d36f086846a066ce1276c0e30944da6672563652701caeb436013241408
-
Size
2.5MB
-
MD5
9a371c228a73b9948ca209b93b96c302
-
SHA1
d3d9950a91ead18b92d89bcaff27d695949b5fec
-
SHA256
fdca1d36f086846a066ce1276c0e30944da6672563652701caeb436013241408
-
SHA512
59b8e224e758284e5f7c44a9e315712851a698f74a67c0407b4feff9f8d03720a78b5afa06a377b0b1f0d467502a902ed7bdfccad811fad63c80ab7d728ae464
-
SSDEEP
49152:h1OsPPHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0Hs:h1OMHVl71RnFXINxvX
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-