General
-
Target
c69ea4ea3bde0d1c495c03c59b61a0c6cbedcd7864c886cca218964c51620727
-
Size
2.5MB
-
Sample
221124-x7hz1shb6z
-
MD5
dc224d9116eef4ef4c79a4853e6335e4
-
SHA1
f1481b561e79f68b1ce2d68e7e263278a7918da0
-
SHA256
c69ea4ea3bde0d1c495c03c59b61a0c6cbedcd7864c886cca218964c51620727
-
SHA512
17e5e5573e991d98d317bb64f9355cc001af016f470cdf55b6c978371b3f8475d80db9fb97ba0b4ac9fd682f398858e562d388c47370ea79f23eb926e3964d99
-
SSDEEP
49152:h1OsgyDFXmj+BHBALGk7GNIgSDjjQkzYznJKOZaB/Isxd:h1O30JSqALGkqaDj7d
Malware Config
Targets
-
-
Target
c69ea4ea3bde0d1c495c03c59b61a0c6cbedcd7864c886cca218964c51620727
-
Size
2.5MB
-
MD5
dc224d9116eef4ef4c79a4853e6335e4
-
SHA1
f1481b561e79f68b1ce2d68e7e263278a7918da0
-
SHA256
c69ea4ea3bde0d1c495c03c59b61a0c6cbedcd7864c886cca218964c51620727
-
SHA512
17e5e5573e991d98d317bb64f9355cc001af016f470cdf55b6c978371b3f8475d80db9fb97ba0b4ac9fd682f398858e562d388c47370ea79f23eb926e3964d99
-
SSDEEP
49152:h1OsgyDFXmj+BHBALGk7GNIgSDjjQkzYznJKOZaB/Isxd:h1O30JSqALGkqaDj7d
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-