General
-
Target
fda923c7d8f5883a5502552164dcdca9966b828d6f50c713eed90910850aa559
-
Size
2.5MB
-
Sample
221124-tycj4aad7z
-
MD5
53e4ad6413163de8534880fb6c1a035b
-
SHA1
e1a533cdb3f2d57010bc891e5d04f96fe3b10e51
-
SHA256
fda923c7d8f5883a5502552164dcdca9966b828d6f50c713eed90910850aa559
-
SHA512
6c4853212b2255f88f294fc659867b5eaa3065d4a4120ee6917a7c5c8fcab9c42401607a3c5ab5267ef7554f7a14c96a684def53ed4f87da4f916496689ccfa6
-
SSDEEP
49152:h1OsHSQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zV:h1O8SQY1DCqkck4apyLqC
Malware Config
Targets
-
-
Target
fda923c7d8f5883a5502552164dcdca9966b828d6f50c713eed90910850aa559
-
Size
2.5MB
-
MD5
53e4ad6413163de8534880fb6c1a035b
-
SHA1
e1a533cdb3f2d57010bc891e5d04f96fe3b10e51
-
SHA256
fda923c7d8f5883a5502552164dcdca9966b828d6f50c713eed90910850aa559
-
SHA512
6c4853212b2255f88f294fc659867b5eaa3065d4a4120ee6917a7c5c8fcab9c42401607a3c5ab5267ef7554f7a14c96a684def53ed4f87da4f916496689ccfa6
-
SSDEEP
49152:h1OsHSQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zV:h1O8SQY1DCqkck4apyLqC
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-