General
-
Target
c8fb4d5817c67d1087cdd98dbcf57c92a0e9d31b56014c7dfe347e67e0c65a8c
-
Size
2.5MB
-
Sample
221124-x23ggadg54
-
MD5
7510b8b3f3853ed859a2ef9be9c9710c
-
SHA1
091fc6d5999254fa4a9b7103b6f5b4b09f141939
-
SHA256
c8fb4d5817c67d1087cdd98dbcf57c92a0e9d31b56014c7dfe347e67e0c65a8c
-
SHA512
ad185ca4f30caea8cce03ffe13f97514185c13cd4dbfcd4f6525672b54066de14d00744118a5d00314df90ff4639fc64453893307298a4705d771982435f5d48
-
SSDEEP
49152:h1OsL+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEf:h1OZQCjbKioVg3ArKh40W
Malware Config
Targets
-
-
Target
c8fb4d5817c67d1087cdd98dbcf57c92a0e9d31b56014c7dfe347e67e0c65a8c
-
Size
2.5MB
-
MD5
7510b8b3f3853ed859a2ef9be9c9710c
-
SHA1
091fc6d5999254fa4a9b7103b6f5b4b09f141939
-
SHA256
c8fb4d5817c67d1087cdd98dbcf57c92a0e9d31b56014c7dfe347e67e0c65a8c
-
SHA512
ad185ca4f30caea8cce03ffe13f97514185c13cd4dbfcd4f6525672b54066de14d00744118a5d00314df90ff4639fc64453893307298a4705d771982435f5d48
-
SSDEEP
49152:h1OsL+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEf:h1OZQCjbKioVg3ArKh40W
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-