General
-
Target
c49b0d01811ef34350787291059faecbbc8ed1bd50bff792c16a2df32e749bc5
-
Size
920KB
-
Sample
221124-yaxmksec66
-
MD5
14ee9e5cf9ed7ba6502ee07a98634064
-
SHA1
eae52b8985f1650ffd3e2ab6ff8349deaeba46eb
-
SHA256
c49b0d01811ef34350787291059faecbbc8ed1bd50bff792c16a2df32e749bc5
-
SHA512
3af12ff1df1c768c5a20b54e6a04fbf2047aef9ee4b8abd423d9365bcaeeb81efefb545fbf645d99217b3186591363944d0ada42d38d611281e4a4e7d578908f
-
SSDEEP
24576:h1OYdaOBMtdHAqcdDVhYwiei7+EpFAh/kKA:h1OskPHVmVhYwiLtKkKA
Malware Config
Targets
-
-
Target
c49b0d01811ef34350787291059faecbbc8ed1bd50bff792c16a2df32e749bc5
-
Size
920KB
-
MD5
14ee9e5cf9ed7ba6502ee07a98634064
-
SHA1
eae52b8985f1650ffd3e2ab6ff8349deaeba46eb
-
SHA256
c49b0d01811ef34350787291059faecbbc8ed1bd50bff792c16a2df32e749bc5
-
SHA512
3af12ff1df1c768c5a20b54e6a04fbf2047aef9ee4b8abd423d9365bcaeeb81efefb545fbf645d99217b3186591363944d0ada42d38d611281e4a4e7d578908f
-
SSDEEP
24576:h1OYdaOBMtdHAqcdDVhYwiei7+EpFAh/kKA:h1OskPHVmVhYwiLtKkKA
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-