General
-
Target
c4a304e312155223185c12c7aacb2efb233d57f37e4d27f72c1681eb4402f1b8
-
Size
931KB
-
Sample
221124-yatkxsec62
-
MD5
e5af7ea8b684b3df89092c312273b421
-
SHA1
b6aa6685414f6d7b29df9394d784d5fb2e8ba837
-
SHA256
c4a304e312155223185c12c7aacb2efb233d57f37e4d27f72c1681eb4402f1b8
-
SHA512
6207d1aad46076669dcaa932fe9b1cad2ac7ae9452f8694e2f8e796ef1f1b6beffb7627e32f2d6cf42a091f788ab0ae7ecdc5ef323e6f6ca375bd1e5c76f051e
-
SSDEEP
24576:h1OYdaOHCZ/iWCvu/2sWsJA/jlt+DHhsu:h1Os5CpYO/dJJDHhsu
Malware Config
Targets
-
-
Target
c4a304e312155223185c12c7aacb2efb233d57f37e4d27f72c1681eb4402f1b8
-
Size
931KB
-
MD5
e5af7ea8b684b3df89092c312273b421
-
SHA1
b6aa6685414f6d7b29df9394d784d5fb2e8ba837
-
SHA256
c4a304e312155223185c12c7aacb2efb233d57f37e4d27f72c1681eb4402f1b8
-
SHA512
6207d1aad46076669dcaa932fe9b1cad2ac7ae9452f8694e2f8e796ef1f1b6beffb7627e32f2d6cf42a091f788ab0ae7ecdc5ef323e6f6ca375bd1e5c76f051e
-
SSDEEP
24576:h1OYdaOHCZ/iWCvu/2sWsJA/jlt+DHhsu:h1Os5CpYO/dJJDHhsu
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-