General
-
Target
c8d2f20cdd681fb638bb5e9a255c8dde4ac846f5589dccd3c51fee5e8a2ed329
-
Size
2.5MB
-
Sample
221124-x3jqragh5y
-
MD5
588527e9fab690b353c86c540bf1b768
-
SHA1
e782f49ae428a1c67f7f821d5b53863e41b1645e
-
SHA256
c8d2f20cdd681fb638bb5e9a255c8dde4ac846f5589dccd3c51fee5e8a2ed329
-
SHA512
2a5fc3b5edd5b5c39721b1e4ecf370dcbdd396470f48b76186e8c24e5dbe3131c61d9a38f2ee84400c40b924941ac6c2e21c24ef3624bfa9ae386145206ff83f
-
SSDEEP
49152:h1Os2+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEu:h1OWQCjbKioVg3ArKh40h
Malware Config
Targets
-
-
Target
c8d2f20cdd681fb638bb5e9a255c8dde4ac846f5589dccd3c51fee5e8a2ed329
-
Size
2.5MB
-
MD5
588527e9fab690b353c86c540bf1b768
-
SHA1
e782f49ae428a1c67f7f821d5b53863e41b1645e
-
SHA256
c8d2f20cdd681fb638bb5e9a255c8dde4ac846f5589dccd3c51fee5e8a2ed329
-
SHA512
2a5fc3b5edd5b5c39721b1e4ecf370dcbdd396470f48b76186e8c24e5dbe3131c61d9a38f2ee84400c40b924941ac6c2e21c24ef3624bfa9ae386145206ff83f
-
SSDEEP
49152:h1Os2+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEu:h1OWQCjbKioVg3ArKh40h
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-