General
-
Target
fd47f63587cf3fd1b359b0c4fd1ca1073e6bf560df9b4fb22ece942fb28c5b95
-
Size
2.5MB
-
Sample
221124-ty18fsae2z
-
MD5
cc140e6c1847db7f37579e00d17ddf91
-
SHA1
b88481e1f4834969bf7bd78d052be5faae87b115
-
SHA256
fd47f63587cf3fd1b359b0c4fd1ca1073e6bf560df9b4fb22ece942fb28c5b95
-
SHA512
150ab6d8528219658e7499cacab5cc643979f375a3b1381ba7fd201902741ce697f74ff518d7e09d926ccfe8ea6ae7bf7c740a6e561207d264ac609f0c5eb975
-
SSDEEP
49152:h1OsEPHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0Ha:h1OnHVl71RnFXINxvd
Malware Config
Targets
-
-
Target
fd47f63587cf3fd1b359b0c4fd1ca1073e6bf560df9b4fb22ece942fb28c5b95
-
Size
2.5MB
-
MD5
cc140e6c1847db7f37579e00d17ddf91
-
SHA1
b88481e1f4834969bf7bd78d052be5faae87b115
-
SHA256
fd47f63587cf3fd1b359b0c4fd1ca1073e6bf560df9b4fb22ece942fb28c5b95
-
SHA512
150ab6d8528219658e7499cacab5cc643979f375a3b1381ba7fd201902741ce697f74ff518d7e09d926ccfe8ea6ae7bf7c740a6e561207d264ac609f0c5eb975
-
SSDEEP
49152:h1OsEPHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0Ha:h1OnHVl71RnFXINxvd
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-