General
-
Target
fcf87ea71e57ac52f484ee6f8ad4ebc4b83089f02e1b1ab0093c3516cf7ac0b7
-
Size
932KB
-
Sample
221124-tzm28afc62
-
MD5
f89da31eeb96961d6f3675d59f9e746a
-
SHA1
034fc906b87724ae4419c86eabbb09e8d543ff3b
-
SHA256
fcf87ea71e57ac52f484ee6f8ad4ebc4b83089f02e1b1ab0093c3516cf7ac0b7
-
SHA512
edd0d355972a236f4d34da314ce7d2b47d96e6ae3ab88074e61a296a652bcf6a2ca02f2874be4686c9d78fbc2e0f7f392f350eecd868dfe6c3741343bc8c9d7b
-
SSDEEP
24576:h1OYdaOVCZ/iWCvu/2sWsJA/jlt+DHhsJ:h1OsjCpYO/dJJDHhsJ
Malware Config
Targets
-
-
Target
fcf87ea71e57ac52f484ee6f8ad4ebc4b83089f02e1b1ab0093c3516cf7ac0b7
-
Size
932KB
-
MD5
f89da31eeb96961d6f3675d59f9e746a
-
SHA1
034fc906b87724ae4419c86eabbb09e8d543ff3b
-
SHA256
fcf87ea71e57ac52f484ee6f8ad4ebc4b83089f02e1b1ab0093c3516cf7ac0b7
-
SHA512
edd0d355972a236f4d34da314ce7d2b47d96e6ae3ab88074e61a296a652bcf6a2ca02f2874be4686c9d78fbc2e0f7f392f350eecd868dfe6c3741343bc8c9d7b
-
SSDEEP
24576:h1OYdaOVCZ/iWCvu/2sWsJA/jlt+DHhsJ:h1OsjCpYO/dJJDHhsJ
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-