General
-
Target
fcc78cc2759825bba27e8200fcff310fa6fd16a5d0c553f882e0905ad345c0ed
-
Size
2.5MB
-
Sample
221124-tz5l9sfc83
-
MD5
920d6f8ad5874219b1c10c5c90de41de
-
SHA1
cf8d16e9cdd73fadc268b67387417c7f1ad626f7
-
SHA256
fcc78cc2759825bba27e8200fcff310fa6fd16a5d0c553f882e0905ad345c0ed
-
SHA512
1c2765c5ef712a55266fe12f17bced571f1785514ccaca1e217d34b2ad50643469994de8aa547560d5d603667cfc3f7b78f353fef69b3f73a171a06acf7fd28a
-
SSDEEP
49152:h1OsUPHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0Hm:h1ObHVl71RnFXINxvX
Malware Config
Targets
-
-
Target
fcc78cc2759825bba27e8200fcff310fa6fd16a5d0c553f882e0905ad345c0ed
-
Size
2.5MB
-
MD5
920d6f8ad5874219b1c10c5c90de41de
-
SHA1
cf8d16e9cdd73fadc268b67387417c7f1ad626f7
-
SHA256
fcc78cc2759825bba27e8200fcff310fa6fd16a5d0c553f882e0905ad345c0ed
-
SHA512
1c2765c5ef712a55266fe12f17bced571f1785514ccaca1e217d34b2ad50643469994de8aa547560d5d603667cfc3f7b78f353fef69b3f73a171a06acf7fd28a
-
SSDEEP
49152:h1OsUPHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0Hm:h1ObHVl71RnFXINxvX
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-