General
-
Target
ca22bc6fab3f404efbc9c9aff749335b102a7785f3638296f4be25e43e1cd280
-
Size
2.5MB
-
Sample
221124-xy6dysde89
-
MD5
a27758cdb52ab6ebace14db19a72b6af
-
SHA1
b35bdd878be7caaef7bccdb5ccf9ff748a0ef51d
-
SHA256
ca22bc6fab3f404efbc9c9aff749335b102a7785f3638296f4be25e43e1cd280
-
SHA512
3c5b788e1bb9cf45cdbef6dfda69632e682fe41a7e1a8720a685d073f958a98f36269276894a81690847310933f7e74f8a4e716f3aa4a04031ebb0510a383416
-
SSDEEP
49152:h1Os0CpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bk1:h1O6ly7kNfrNq41
Malware Config
Targets
-
-
Target
ca22bc6fab3f404efbc9c9aff749335b102a7785f3638296f4be25e43e1cd280
-
Size
2.5MB
-
MD5
a27758cdb52ab6ebace14db19a72b6af
-
SHA1
b35bdd878be7caaef7bccdb5ccf9ff748a0ef51d
-
SHA256
ca22bc6fab3f404efbc9c9aff749335b102a7785f3638296f4be25e43e1cd280
-
SHA512
3c5b788e1bb9cf45cdbef6dfda69632e682fe41a7e1a8720a685d073f958a98f36269276894a81690847310933f7e74f8a4e716f3aa4a04031ebb0510a383416
-
SSDEEP
49152:h1Os0CpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bk1:h1O6ly7kNfrNq41
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-