General
-
Target
c57ee6e93f24b99196eae01beeb02839f98c6204a586744a347e979db1e8473e
-
Size
931KB
-
Sample
221124-x88l3aeb77
-
MD5
52dedcafdd4b704bf743ede96d0a734e
-
SHA1
c2a061908bb428e54232eea6884e8404d03dc848
-
SHA256
c57ee6e93f24b99196eae01beeb02839f98c6204a586744a347e979db1e8473e
-
SHA512
3f4e685b85a2ee5bb891cf5b8c014a4152a906d9ec946a50bd6f740797e59dc81311455e9cc54300db6337be2510c478e53c4ecea7666330f8e675483b388372
-
SSDEEP
24576:h1OYdaOWCZ/iWCvu/2sWsJA/jlt+DHhsl:h1OssCpYO/dJJDHhsl
Malware Config
Targets
-
-
Target
c57ee6e93f24b99196eae01beeb02839f98c6204a586744a347e979db1e8473e
-
Size
931KB
-
MD5
52dedcafdd4b704bf743ede96d0a734e
-
SHA1
c2a061908bb428e54232eea6884e8404d03dc848
-
SHA256
c57ee6e93f24b99196eae01beeb02839f98c6204a586744a347e979db1e8473e
-
SHA512
3f4e685b85a2ee5bb891cf5b8c014a4152a906d9ec946a50bd6f740797e59dc81311455e9cc54300db6337be2510c478e53c4ecea7666330f8e675483b388372
-
SSDEEP
24576:h1OYdaOWCZ/iWCvu/2sWsJA/jlt+DHhsl:h1OssCpYO/dJJDHhsl
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-