General
-
Target
c34a75f892c427316f9b614c13892cef30a481cc38fdcb60b1b84282969175bc
-
Size
2.5MB
-
Sample
221124-ydjj5aee25
-
MD5
4aa9f18d719ae1309620dd3042ad867f
-
SHA1
a1ce3d9ce39b7c045090f1634ced3428a4960ee7
-
SHA256
c34a75f892c427316f9b614c13892cef30a481cc38fdcb60b1b84282969175bc
-
SHA512
193e75f08fb3345b2c8c7d7e392a349920c02dd62d76b03d193479256d6226df617eb54c1e8290e1848285bd99c94bbcd72483cfd18cfd6ee847d58156a0f9b3
-
SSDEEP
49152:h1OsuUc3R1YQeb1bR9qMS3te/+E+kzkeRutdQ3L3V/A9VeF:h1O/bRsTWe/ZH
Malware Config
Targets
-
-
Target
c34a75f892c427316f9b614c13892cef30a481cc38fdcb60b1b84282969175bc
-
Size
2.5MB
-
MD5
4aa9f18d719ae1309620dd3042ad867f
-
SHA1
a1ce3d9ce39b7c045090f1634ced3428a4960ee7
-
SHA256
c34a75f892c427316f9b614c13892cef30a481cc38fdcb60b1b84282969175bc
-
SHA512
193e75f08fb3345b2c8c7d7e392a349920c02dd62d76b03d193479256d6226df617eb54c1e8290e1848285bd99c94bbcd72483cfd18cfd6ee847d58156a0f9b3
-
SSDEEP
49152:h1OsuUc3R1YQeb1bR9qMS3te/+E+kzkeRutdQ3L3V/A9VeF:h1O/bRsTWe/ZH
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-