General
-
Target
c686b1d3e6863f7186f560a3b8c4fb13e1334714b2e96e506e094723a094e643
-
Size
2.5MB
-
Sample
221124-x7nv9shb7z
-
MD5
616ae982a1bbfe24aad362577839642a
-
SHA1
15ca9e59adfa79af4e7edc0abf07a6fbf9221b11
-
SHA256
c686b1d3e6863f7186f560a3b8c4fb13e1334714b2e96e506e094723a094e643
-
SHA512
28b508328548add2f3ff4954a4055f43fdcd0be339b752ccccd6799a868dc99713c5436ed2d447d5ca731f63ed2093078fe3a391e7d2cee28ca6771649de605f
-
SSDEEP
49152:h1OsnPHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0H+:h1OGHVl71RnFXINxvB
Malware Config
Targets
-
-
Target
c686b1d3e6863f7186f560a3b8c4fb13e1334714b2e96e506e094723a094e643
-
Size
2.5MB
-
MD5
616ae982a1bbfe24aad362577839642a
-
SHA1
15ca9e59adfa79af4e7edc0abf07a6fbf9221b11
-
SHA256
c686b1d3e6863f7186f560a3b8c4fb13e1334714b2e96e506e094723a094e643
-
SHA512
28b508328548add2f3ff4954a4055f43fdcd0be339b752ccccd6799a868dc99713c5436ed2d447d5ca731f63ed2093078fe3a391e7d2cee28ca6771649de605f
-
SSDEEP
49152:h1OsnPHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0H+:h1OGHVl71RnFXINxvB
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-