General
-
Target
c667f61c7bb2dcbeffa835d44ebd8ef6ab5c5778a1e8f9a866e323f23e138920
-
Size
2.5MB
-
Sample
221124-x7trhshb8w
-
MD5
ba4fbc611556a014d907a12d443d4ca4
-
SHA1
51ac7871f5fa209f8ca61ba956c1c350be8c8706
-
SHA256
c667f61c7bb2dcbeffa835d44ebd8ef6ab5c5778a1e8f9a866e323f23e138920
-
SHA512
f2a4310c8b463e46b7ba79bc88cfc0ec841b1153499e8519a7880d89917beb45accbedc246bf691607bb64bbc1a4307fc398240a2481ab95e2fe5556e932fdb8
-
SSDEEP
49152:h1OsQSQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zqH:h1O/SQY1DCqkck4apyLqZH
Malware Config
Targets
-
-
Target
c667f61c7bb2dcbeffa835d44ebd8ef6ab5c5778a1e8f9a866e323f23e138920
-
Size
2.5MB
-
MD5
ba4fbc611556a014d907a12d443d4ca4
-
SHA1
51ac7871f5fa209f8ca61ba956c1c350be8c8706
-
SHA256
c667f61c7bb2dcbeffa835d44ebd8ef6ab5c5778a1e8f9a866e323f23e138920
-
SHA512
f2a4310c8b463e46b7ba79bc88cfc0ec841b1153499e8519a7880d89917beb45accbedc246bf691607bb64bbc1a4307fc398240a2481ab95e2fe5556e932fdb8
-
SSDEEP
49152:h1OsQSQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zqH:h1O/SQY1DCqkck4apyLqZH
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-