General
-
Target
fdaba71188175633de94ad628880b606b67183ba780c6f94a0f4fde3d5d15509
-
Size
2.5MB
-
Sample
221124-tybmssfb84
-
MD5
7ba99f4a1c472c462565ca1c4383055b
-
SHA1
8b3198f36ad14368cbd3b5c371c683951867a147
-
SHA256
fdaba71188175633de94ad628880b606b67183ba780c6f94a0f4fde3d5d15509
-
SHA512
58b287ad9285770dfaf380006be312b9de7f31b4ef3b4226f0ce05b663d979305adfef9347915cb1d8501bebdbd861f790e5c007e5ceb23a0a127cdaabc55a9b
-
SSDEEP
49152:h1Oso+CUVCan0ytkbv/uiAY2QipuqOXMzsivHHOHNRcb81:h1OD+Yan0v+QAuqOXQBvy
Malware Config
Targets
-
-
Target
fdaba71188175633de94ad628880b606b67183ba780c6f94a0f4fde3d5d15509
-
Size
2.5MB
-
MD5
7ba99f4a1c472c462565ca1c4383055b
-
SHA1
8b3198f36ad14368cbd3b5c371c683951867a147
-
SHA256
fdaba71188175633de94ad628880b606b67183ba780c6f94a0f4fde3d5d15509
-
SHA512
58b287ad9285770dfaf380006be312b9de7f31b4ef3b4226f0ce05b663d979305adfef9347915cb1d8501bebdbd861f790e5c007e5ceb23a0a127cdaabc55a9b
-
SSDEEP
49152:h1Oso+CUVCan0ytkbv/uiAY2QipuqOXMzsivHHOHNRcb81:h1OD+Yan0v+QAuqOXQBvy
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-