General
-
Target
c8d882f7cbaca366c8a86fc0a0799ffe6531b1c0f1e20ff825f70e472d42a027
-
Size
931KB
-
Sample
221124-x3gamadg72
-
MD5
dae4cd4c7d45b7e423c75be20a8c097e
-
SHA1
660fc9baec79b2c51082c97e60e8bab753b874b1
-
SHA256
c8d882f7cbaca366c8a86fc0a0799ffe6531b1c0f1e20ff825f70e472d42a027
-
SHA512
e853f1b4b4c594b93fd8dd2377d968b8b01cbe24e75a3487378f67255f764e6ab9de79f937939fd4b16f3edbd54b14f3b6b8c7503a879edbc41b66987fe770cf
-
SSDEEP
24576:h1OYdaOMCZ/iWCvu/2sWsJA/jlt+DHhsW:h1OsaCpYO/dJJDHhsW
Malware Config
Targets
-
-
Target
c8d882f7cbaca366c8a86fc0a0799ffe6531b1c0f1e20ff825f70e472d42a027
-
Size
931KB
-
MD5
dae4cd4c7d45b7e423c75be20a8c097e
-
SHA1
660fc9baec79b2c51082c97e60e8bab753b874b1
-
SHA256
c8d882f7cbaca366c8a86fc0a0799ffe6531b1c0f1e20ff825f70e472d42a027
-
SHA512
e853f1b4b4c594b93fd8dd2377d968b8b01cbe24e75a3487378f67255f764e6ab9de79f937939fd4b16f3edbd54b14f3b6b8c7503a879edbc41b66987fe770cf
-
SSDEEP
24576:h1OYdaOMCZ/iWCvu/2sWsJA/jlt+DHhsW:h1OsaCpYO/dJJDHhsW
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-