General
-
Target
cf30264e918b461f374dee9a424917e45b2a102dd639d1ea08bf5d3c342360de
-
Size
2.5MB
-
Sample
221124-xm9x1ach49
-
MD5
12ec66a0e5ca5c50673dc17f39172661
-
SHA1
10ae87807b3f9ebda39bd240def075435fb0f2fa
-
SHA256
cf30264e918b461f374dee9a424917e45b2a102dd639d1ea08bf5d3c342360de
-
SHA512
019ea3be235ab6b26ebeea188e3cdb27160a78bef075e1f0b2e8150a14037110dee7f07a249039cdae6c2b7338470bb55cf90afc4d3148a56151656aae008fd2
-
SSDEEP
49152:h1OsA+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TE3:h1O4QCjbKioVg3ArKh400
Malware Config
Targets
-
-
Target
cf30264e918b461f374dee9a424917e45b2a102dd639d1ea08bf5d3c342360de
-
Size
2.5MB
-
MD5
12ec66a0e5ca5c50673dc17f39172661
-
SHA1
10ae87807b3f9ebda39bd240def075435fb0f2fa
-
SHA256
cf30264e918b461f374dee9a424917e45b2a102dd639d1ea08bf5d3c342360de
-
SHA512
019ea3be235ab6b26ebeea188e3cdb27160a78bef075e1f0b2e8150a14037110dee7f07a249039cdae6c2b7338470bb55cf90afc4d3148a56151656aae008fd2
-
SSDEEP
49152:h1OsA+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TE3:h1O4QCjbKioVg3ArKh400
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-