General
-
Target
c5a52ad927b78f69eabe32d13e9cc6d3d1aabbdfc911c264718d9eb87f9e10d3
-
Size
920KB
-
Sample
221124-x85keahc6w
-
MD5
bbca8db27168d6e98962196966e1ea4b
-
SHA1
4c1b69f833e541a05f13ac9f93b228c006f29e7f
-
SHA256
c5a52ad927b78f69eabe32d13e9cc6d3d1aabbdfc911c264718d9eb87f9e10d3
-
SHA512
0090fed54c7e546d54e9f129a40a6173786b5aa806175c3593894856801b39c1115c5302dfd06996ece79d30c51a8b604f0978fb80fc3181296380200e9eb3b3
-
SSDEEP
24576:h1OYdaObMtdHAqcdDVhYwiei7+EpFAh/kKn:h1OsuPHVmVhYwiLtKkKn
Malware Config
Targets
-
-
Target
c5a52ad927b78f69eabe32d13e9cc6d3d1aabbdfc911c264718d9eb87f9e10d3
-
Size
920KB
-
MD5
bbca8db27168d6e98962196966e1ea4b
-
SHA1
4c1b69f833e541a05f13ac9f93b228c006f29e7f
-
SHA256
c5a52ad927b78f69eabe32d13e9cc6d3d1aabbdfc911c264718d9eb87f9e10d3
-
SHA512
0090fed54c7e546d54e9f129a40a6173786b5aa806175c3593894856801b39c1115c5302dfd06996ece79d30c51a8b604f0978fb80fc3181296380200e9eb3b3
-
SSDEEP
24576:h1OYdaObMtdHAqcdDVhYwiei7+EpFAh/kKn:h1OsuPHVmVhYwiLtKkKn
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-