General
-
Target
ca81b2afc5805f3bd8f53fa476a58513b0235b15199c1a1b4b4b9cbd51534a53
-
Size
931KB
-
Sample
221124-xyma3sde67
-
MD5
d05e7dfe0c1c877b4d2ef0325cde8e83
-
SHA1
2b46c3a7c341ad8ec711cdff1acae04d47c96ed4
-
SHA256
ca81b2afc5805f3bd8f53fa476a58513b0235b15199c1a1b4b4b9cbd51534a53
-
SHA512
44bdaa614cbbae5b3d78e09bb95948e1d3a888cab65b1b0d1614ca729740e51d3d9af40b151fc972b68f3daf93f322c38a7a5078e693c57513944c852fddf4c0
-
SSDEEP
24576:h1OYdaOFCZ/iWCvu/2sWsJA/jlt+DHhs/:h1OszCpYO/dJJDHhs/
Malware Config
Targets
-
-
Target
ca81b2afc5805f3bd8f53fa476a58513b0235b15199c1a1b4b4b9cbd51534a53
-
Size
931KB
-
MD5
d05e7dfe0c1c877b4d2ef0325cde8e83
-
SHA1
2b46c3a7c341ad8ec711cdff1acae04d47c96ed4
-
SHA256
ca81b2afc5805f3bd8f53fa476a58513b0235b15199c1a1b4b4b9cbd51534a53
-
SHA512
44bdaa614cbbae5b3d78e09bb95948e1d3a888cab65b1b0d1614ca729740e51d3d9af40b151fc972b68f3daf93f322c38a7a5078e693c57513944c852fddf4c0
-
SSDEEP
24576:h1OYdaOFCZ/iWCvu/2sWsJA/jlt+DHhs/:h1OszCpYO/dJJDHhs/
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-