General
-
Target
c68a4685bd7f0f891a51fbb458ff421475ef95a3e18981829ef345ebad2856af
-
Size
931KB
-
Sample
221124-x7l2nshb7v
-
MD5
647021caba041855866788f6f5810c30
-
SHA1
a50b9751b72431a0899cb76bccd3f08a7a42ae98
-
SHA256
c68a4685bd7f0f891a51fbb458ff421475ef95a3e18981829ef345ebad2856af
-
SHA512
88e17f1611124de68399ac7b82ecceaeaf6995a1c259fc373b0052c84428500084c6e44c1c314b2edab3c0dc023bc405173c7adac2611603f5f958c433833e31
-
SSDEEP
24576:h1OYdaOpCZ/iWCvu/2sWsJA/jlt+DHhsv:h1OsHCpYO/dJJDHhsv
Malware Config
Targets
-
-
Target
c68a4685bd7f0f891a51fbb458ff421475ef95a3e18981829ef345ebad2856af
-
Size
931KB
-
MD5
647021caba041855866788f6f5810c30
-
SHA1
a50b9751b72431a0899cb76bccd3f08a7a42ae98
-
SHA256
c68a4685bd7f0f891a51fbb458ff421475ef95a3e18981829ef345ebad2856af
-
SHA512
88e17f1611124de68399ac7b82ecceaeaf6995a1c259fc373b0052c84428500084c6e44c1c314b2edab3c0dc023bc405173c7adac2611603f5f958c433833e31
-
SSDEEP
24576:h1OYdaOpCZ/iWCvu/2sWsJA/jlt+DHhsv:h1OsHCpYO/dJJDHhsv
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-