General
-
Target
c6f87e00df16fea20a7fd430c8cd207ee448dfe71cd034f30bc08efdaecaf8fa
-
Size
2.5MB
-
Sample
221124-x6wjqahb3v
-
MD5
5584f5500d72c13f2dc0a81cf5a57367
-
SHA1
042e9bd4e25bdc1e9192412d8f2ab26d0f7e975f
-
SHA256
c6f87e00df16fea20a7fd430c8cd207ee448dfe71cd034f30bc08efdaecaf8fa
-
SHA512
4961ffc93b839f3484f15f008b98c8ccf91ac4e05ebe45de46700a60951e2f4139f55c2e72c061ac98f2962dec353f35be2425435eb45b937a44ae9df65c93d0
-
SSDEEP
49152:h1OsH+CUVCan0ytkbv/uiAY2QipuqOXMzsivHHOHNRcb8b:h1OM+Yan0v+QAuqOXQBvk
Malware Config
Targets
-
-
Target
c6f87e00df16fea20a7fd430c8cd207ee448dfe71cd034f30bc08efdaecaf8fa
-
Size
2.5MB
-
MD5
5584f5500d72c13f2dc0a81cf5a57367
-
SHA1
042e9bd4e25bdc1e9192412d8f2ab26d0f7e975f
-
SHA256
c6f87e00df16fea20a7fd430c8cd207ee448dfe71cd034f30bc08efdaecaf8fa
-
SHA512
4961ffc93b839f3484f15f008b98c8ccf91ac4e05ebe45de46700a60951e2f4139f55c2e72c061ac98f2962dec353f35be2425435eb45b937a44ae9df65c93d0
-
SSDEEP
49152:h1OsH+CUVCan0ytkbv/uiAY2QipuqOXMzsivHHOHNRcb8b:h1OM+Yan0v+QAuqOXQBvk
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-