General
-
Target
c98d488f08a12f27e9ffc934e9b606e0f46938b1e361405699d5602dc2bdc248
-
Size
920KB
-
Sample
221124-x1d3gsdf63
-
MD5
e38c202f63a271250b6d7ce1e6648d77
-
SHA1
0d9bf1352bb70b85c39232a710675b687b8cfce9
-
SHA256
c98d488f08a12f27e9ffc934e9b606e0f46938b1e361405699d5602dc2bdc248
-
SHA512
4e11dc91b2a2376eb509a48bbd0b95e0b577ff43db296f8869921ea1c8e389380d528aa31c2b9b2c377e5571c6c913857574bccbee5a65ac0e94aed5022fe15d
-
SSDEEP
24576:h1OYdaORMtdHAqcdDVhYwiei7+EpFAh/kKG:h1OswPHVmVhYwiLtKkKG
Malware Config
Targets
-
-
Target
c98d488f08a12f27e9ffc934e9b606e0f46938b1e361405699d5602dc2bdc248
-
Size
920KB
-
MD5
e38c202f63a271250b6d7ce1e6648d77
-
SHA1
0d9bf1352bb70b85c39232a710675b687b8cfce9
-
SHA256
c98d488f08a12f27e9ffc934e9b606e0f46938b1e361405699d5602dc2bdc248
-
SHA512
4e11dc91b2a2376eb509a48bbd0b95e0b577ff43db296f8869921ea1c8e389380d528aa31c2b9b2c377e5571c6c913857574bccbee5a65ac0e94aed5022fe15d
-
SSDEEP
24576:h1OYdaORMtdHAqcdDVhYwiei7+EpFAh/kKG:h1OswPHVmVhYwiLtKkKG
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-