General
-
Target
c998b5d9995aa7903c6c3d1900d8ff955828da5817ef842570315219d8963d18
-
Size
2.5MB
-
Sample
221124-x1bmcsgg3x
-
MD5
b340a3dfcb498b5ff084d3740463a639
-
SHA1
260f5fca3330562aceede9cccf99fb043a41ab79
-
SHA256
c998b5d9995aa7903c6c3d1900d8ff955828da5817ef842570315219d8963d18
-
SHA512
48914aaaebdf12f0a553490747aa3b39662361feecfc472914ceee33a3820f56a05dab703fd5a12b2512dbb4fd39c65dd200bdfec74ba573d59611416d789836
-
SSDEEP
49152:h1OsZ+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEx:h1ORQCjbKioVg3ArKh406
Malware Config
Targets
-
-
Target
c998b5d9995aa7903c6c3d1900d8ff955828da5817ef842570315219d8963d18
-
Size
2.5MB
-
MD5
b340a3dfcb498b5ff084d3740463a639
-
SHA1
260f5fca3330562aceede9cccf99fb043a41ab79
-
SHA256
c998b5d9995aa7903c6c3d1900d8ff955828da5817ef842570315219d8963d18
-
SHA512
48914aaaebdf12f0a553490747aa3b39662361feecfc472914ceee33a3820f56a05dab703fd5a12b2512dbb4fd39c65dd200bdfec74ba573d59611416d789836
-
SSDEEP
49152:h1OsZ+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEx:h1ORQCjbKioVg3ArKh406
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-