General
-
Target
caa8ffd0331cbde842921c367d14eff482bb7e325768db3fe2ada432c3b63556
-
Size
2.5MB
-
Sample
221124-xx91ragf2t
-
MD5
d69b83285308d90359bca8ac405574dc
-
SHA1
8ffac419fa42ff5409abedbc3afdd715d3c37f52
-
SHA256
caa8ffd0331cbde842921c367d14eff482bb7e325768db3fe2ada432c3b63556
-
SHA512
f680f1feffc031fe284ed1e4fba321ce1a5e1252f447a974508d84d0932faff7f69325c6c04b1e4e2e2fee87ca019f26a6c1113d6952b305f3f1d63380a3efe1
-
SSDEEP
49152:h1OsH+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEN:h1O9QCjbKioVg3ArKh40K
Malware Config
Targets
-
-
Target
caa8ffd0331cbde842921c367d14eff482bb7e325768db3fe2ada432c3b63556
-
Size
2.5MB
-
MD5
d69b83285308d90359bca8ac405574dc
-
SHA1
8ffac419fa42ff5409abedbc3afdd715d3c37f52
-
SHA256
caa8ffd0331cbde842921c367d14eff482bb7e325768db3fe2ada432c3b63556
-
SHA512
f680f1feffc031fe284ed1e4fba321ce1a5e1252f447a974508d84d0932faff7f69325c6c04b1e4e2e2fee87ca019f26a6c1113d6952b305f3f1d63380a3efe1
-
SSDEEP
49152:h1OsH+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEN:h1O9QCjbKioVg3ArKh40K
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-