General
-
Target
c4fe8e2500bdacea5142b5fdbab6843929f871d94e50be53931385e910892da7
-
Size
2.5MB
-
Sample
221124-x919dahd2t
-
MD5
583b6c96d550515a54bc808374722c1a
-
SHA1
50cf6a608bad98828e962a0421a5db7c042295c2
-
SHA256
c4fe8e2500bdacea5142b5fdbab6843929f871d94e50be53931385e910892da7
-
SHA512
15ec051b7422f8c2f0fcccdfffc4324925b2eaae33669353f3b079a48d95315a5ce82dbe28ceb8e055602a67dee51ded203a0f77276952fd7842b5498f15bd62
-
SSDEEP
49152:h1OsN+CUVCan0ytkbv/uiAY2QipuqOXMzsivHHOHNRcb83:h1O++Yan0v+QAuqOXQBvG
Malware Config
Targets
-
-
Target
c4fe8e2500bdacea5142b5fdbab6843929f871d94e50be53931385e910892da7
-
Size
2.5MB
-
MD5
583b6c96d550515a54bc808374722c1a
-
SHA1
50cf6a608bad98828e962a0421a5db7c042295c2
-
SHA256
c4fe8e2500bdacea5142b5fdbab6843929f871d94e50be53931385e910892da7
-
SHA512
15ec051b7422f8c2f0fcccdfffc4324925b2eaae33669353f3b079a48d95315a5ce82dbe28ceb8e055602a67dee51ded203a0f77276952fd7842b5498f15bd62
-
SSDEEP
49152:h1OsN+CUVCan0ytkbv/uiAY2QipuqOXMzsivHHOHNRcb83:h1O++Yan0v+QAuqOXQBvG
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-