General
-
Target
c42b914076231e4e3e4ec95bc54cf821987e8538348f7e8ec95b03cbea84ef87
-
Size
2.5MB
-
Sample
221124-ybkdmsec95
-
MD5
60ca1615601a2a5d64c8299f889bc913
-
SHA1
9b07f70283fb631e9373ada91912f12a9322d056
-
SHA256
c42b914076231e4e3e4ec95bc54cf821987e8538348f7e8ec95b03cbea84ef87
-
SHA512
2cf6b977c69e9ed99d6ac237e045a37108a5cce31c23954810ee810a1b3b0726cff48a9e59e986e166ee467c2af837126297e6e657f6ef3a54550123f2a898ba
-
SSDEEP
49152:h1OsrSQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zQ:h1OYSQY1DCqkck4apyLq9
Malware Config
Targets
-
-
Target
c42b914076231e4e3e4ec95bc54cf821987e8538348f7e8ec95b03cbea84ef87
-
Size
2.5MB
-
MD5
60ca1615601a2a5d64c8299f889bc913
-
SHA1
9b07f70283fb631e9373ada91912f12a9322d056
-
SHA256
c42b914076231e4e3e4ec95bc54cf821987e8538348f7e8ec95b03cbea84ef87
-
SHA512
2cf6b977c69e9ed99d6ac237e045a37108a5cce31c23954810ee810a1b3b0726cff48a9e59e986e166ee467c2af837126297e6e657f6ef3a54550123f2a898ba
-
SSDEEP
49152:h1OsrSQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zQ:h1OYSQY1DCqkck4apyLq9
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-