General
-
Target
c6ae37fc2cd314ac194c644bff6a0da64147fa32223051dc8063fcdc35ffadef
-
Size
2.5MB
-
Sample
221124-x7dejahb51
-
MD5
d3a3dba845842a99dd59d74c779e4f91
-
SHA1
c9ba17a637bf135302a7edf235e659d86278ea56
-
SHA256
c6ae37fc2cd314ac194c644bff6a0da64147fa32223051dc8063fcdc35ffadef
-
SHA512
824545ffa186f4b3411a2d7ff517dfc582734c0f5b1b78ca05d0024ef688d07db5ecbc365f276d5b85e1aa558b8084806def22576b647663f0c2cc1113682c06
-
SSDEEP
49152:h1Os1AQ+1ho2H8swSCCwwFB9nfFVDRBTY/3X5wRLCr56JK8xa:h1OvQzVCwJ/3CRLCrY83
Malware Config
Targets
-
-
Target
c6ae37fc2cd314ac194c644bff6a0da64147fa32223051dc8063fcdc35ffadef
-
Size
2.5MB
-
MD5
d3a3dba845842a99dd59d74c779e4f91
-
SHA1
c9ba17a637bf135302a7edf235e659d86278ea56
-
SHA256
c6ae37fc2cd314ac194c644bff6a0da64147fa32223051dc8063fcdc35ffadef
-
SHA512
824545ffa186f4b3411a2d7ff517dfc582734c0f5b1b78ca05d0024ef688d07db5ecbc365f276d5b85e1aa558b8084806def22576b647663f0c2cc1113682c06
-
SSDEEP
49152:h1Os1AQ+1ho2H8swSCCwwFB9nfFVDRBTY/3X5wRLCr56JK8xa:h1OvQzVCwJ/3CRLCrY83
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-