General
-
Target
c8b97599426311f10c28208131cc06721b92ccd4c99c03caf94dfa4014eed7bc
-
Size
2.5MB
-
Sample
221124-x3qjasdg85
-
MD5
37559264e3828d0c141daaef399905bd
-
SHA1
9b9d94bcc07f7fa3fb6c79a3e9f4334b13a3af31
-
SHA256
c8b97599426311f10c28208131cc06721b92ccd4c99c03caf94dfa4014eed7bc
-
SHA512
a55bc9432f30569c5a4d323085d38fd517f510aa8cfbd63bf505c2554c07f0f7f7a9e50e197562b2d2cb8870dfb9d7887d5115beb7df5c70e0575ccdc6fc192e
-
SSDEEP
49152:h1OsfyDFXmj+BHBALGk7GNIgSDjjQkzYznJKOZaB/IsxM:h1Oe0JSqALGkqaDj7M
Malware Config
Targets
-
-
Target
c8b97599426311f10c28208131cc06721b92ccd4c99c03caf94dfa4014eed7bc
-
Size
2.5MB
-
MD5
37559264e3828d0c141daaef399905bd
-
SHA1
9b9d94bcc07f7fa3fb6c79a3e9f4334b13a3af31
-
SHA256
c8b97599426311f10c28208131cc06721b92ccd4c99c03caf94dfa4014eed7bc
-
SHA512
a55bc9432f30569c5a4d323085d38fd517f510aa8cfbd63bf505c2554c07f0f7f7a9e50e197562b2d2cb8870dfb9d7887d5115beb7df5c70e0575ccdc6fc192e
-
SSDEEP
49152:h1OsfyDFXmj+BHBALGk7GNIgSDjjQkzYznJKOZaB/IsxM:h1Oe0JSqALGkqaDj7M
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-