General
-
Target
cf19dacccaa89bf49d4e70aec8ca147940f1be1b0c38615d0f47b5910804a199
-
Size
2.5MB
-
Sample
221124-xnla2ach62
-
MD5
3d0e035644b7d785891c8eab7a32750d
-
SHA1
6c1fd2fca8a53eeda9c1322dec61cccf1ebdd8dd
-
SHA256
cf19dacccaa89bf49d4e70aec8ca147940f1be1b0c38615d0f47b5910804a199
-
SHA512
d1183c6ea8d6019263c0164e51eb86c3dfb4fb33b927c11103bd2b8cb6a66f69040ff3bdc4b1cc1e4d16496993abba3358ace19285232deddf01263cc8219ea1
-
SSDEEP
49152:h1OsoCpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bkM:h1OAly7kNfrNq4M
Malware Config
Targets
-
-
Target
cf19dacccaa89bf49d4e70aec8ca147940f1be1b0c38615d0f47b5910804a199
-
Size
2.5MB
-
MD5
3d0e035644b7d785891c8eab7a32750d
-
SHA1
6c1fd2fca8a53eeda9c1322dec61cccf1ebdd8dd
-
SHA256
cf19dacccaa89bf49d4e70aec8ca147940f1be1b0c38615d0f47b5910804a199
-
SHA512
d1183c6ea8d6019263c0164e51eb86c3dfb4fb33b927c11103bd2b8cb6a66f69040ff3bdc4b1cc1e4d16496993abba3358ace19285232deddf01263cc8219ea1
-
SSDEEP
49152:h1OsoCpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bkM:h1OAly7kNfrNq4M
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-