General
-
Target
c51929c72e39559710614b7ffacb4f12df0e29398155937b385b9ce94d765f9e
-
Size
2.5MB
-
Sample
221124-x9rpyahc8w
-
MD5
8bfb4d6f132b4c45163ce277fc8b5c21
-
SHA1
b999b928443e88819ddddd4ec1a03b944fdc90a2
-
SHA256
c51929c72e39559710614b7ffacb4f12df0e29398155937b385b9ce94d765f9e
-
SHA512
c68e2109bb60d351da3bc910e8ae94e3737b42a2bd238a12f98027e807dc734e9c3611bdb2ae2c37d80ac9b1149657ca27b8fbd85800758bc86a04d1d2df0eed
-
SSDEEP
49152:h1OsqsNQH0eNGTTOxTnkSM1XN+QMz3p6bOkAk+YetEW6FOCMwEFhjzdUwX:h1OrH0eNGunkt3+1z3p6iVC0
Malware Config
Targets
-
-
Target
c51929c72e39559710614b7ffacb4f12df0e29398155937b385b9ce94d765f9e
-
Size
2.5MB
-
MD5
8bfb4d6f132b4c45163ce277fc8b5c21
-
SHA1
b999b928443e88819ddddd4ec1a03b944fdc90a2
-
SHA256
c51929c72e39559710614b7ffacb4f12df0e29398155937b385b9ce94d765f9e
-
SHA512
c68e2109bb60d351da3bc910e8ae94e3737b42a2bd238a12f98027e807dc734e9c3611bdb2ae2c37d80ac9b1149657ca27b8fbd85800758bc86a04d1d2df0eed
-
SSDEEP
49152:h1OsqsNQH0eNGTTOxTnkSM1XN+QMz3p6bOkAk+YetEW6FOCMwEFhjzdUwX:h1OrH0eNGunkt3+1z3p6iVC0
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-