General
-
Target
c79a9098d1dc16d58c99f5b26f2d5a2b20947be5e91bdd55d1c688cd2fa59081
-
Size
928KB
-
Sample
221124-x5frwadh87
-
MD5
427540afedb102378ebb113077992b9f
-
SHA1
743f25c5bd9db13223e81f26e35a546daaa6310f
-
SHA256
c79a9098d1dc16d58c99f5b26f2d5a2b20947be5e91bdd55d1c688cd2fa59081
-
SHA512
c969f4b29b0db7497bc064e2a8e58fead5ab923908b58cf87178b5b6bdf3d488fdfbad726175ff0d0e76a9c650f62f1cf2cde02fcaccf581e335e74972d766c1
-
SSDEEP
24576:h1OYdaOpnQju5vMu6qN2FctIOBYXZBai3GBlgpKLe/7rQ:h1OsTQjO6HHzayGBe/7rQ
Malware Config
Targets
-
-
Target
c79a9098d1dc16d58c99f5b26f2d5a2b20947be5e91bdd55d1c688cd2fa59081
-
Size
928KB
-
MD5
427540afedb102378ebb113077992b9f
-
SHA1
743f25c5bd9db13223e81f26e35a546daaa6310f
-
SHA256
c79a9098d1dc16d58c99f5b26f2d5a2b20947be5e91bdd55d1c688cd2fa59081
-
SHA512
c969f4b29b0db7497bc064e2a8e58fead5ab923908b58cf87178b5b6bdf3d488fdfbad726175ff0d0e76a9c650f62f1cf2cde02fcaccf581e335e74972d766c1
-
SSDEEP
24576:h1OYdaOpnQju5vMu6qN2FctIOBYXZBai3GBlgpKLe/7rQ:h1OsTQjO6HHzayGBe/7rQ
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-