General
-
Target
c32fd5fc9687036de0906f77c66fc74f676cfaffa8c55b51e682f0d94e7108d3
-
Size
2.5MB
-
Sample
221124-yds4kaee39
-
MD5
26ae1e973b5f0dec75fce7eda6f6aea3
-
SHA1
5228955356af4c5249c2dc9befedcafe47e4e9a3
-
SHA256
c32fd5fc9687036de0906f77c66fc74f676cfaffa8c55b51e682f0d94e7108d3
-
SHA512
2cb723961e5ce7ad3e6db90b73fb8cb060ae7e71e584ca22b5b4b26718bef33e04d883304f30cfd665138fd1ecea70a75b826fd9eb92c5ab072bd1679570c7e5
-
SSDEEP
49152:h1OsJsNQH0eNGTTOxTnkSM1XN+QMz3p6bOkAk+YetEW6FOCMwEFhjzdUwN:h1OuH0eNGunkt3+1z3p6iVCi
Malware Config
Targets
-
-
Target
c32fd5fc9687036de0906f77c66fc74f676cfaffa8c55b51e682f0d94e7108d3
-
Size
2.5MB
-
MD5
26ae1e973b5f0dec75fce7eda6f6aea3
-
SHA1
5228955356af4c5249c2dc9befedcafe47e4e9a3
-
SHA256
c32fd5fc9687036de0906f77c66fc74f676cfaffa8c55b51e682f0d94e7108d3
-
SHA512
2cb723961e5ce7ad3e6db90b73fb8cb060ae7e71e584ca22b5b4b26718bef33e04d883304f30cfd665138fd1ecea70a75b826fd9eb92c5ab072bd1679570c7e5
-
SSDEEP
49152:h1OsJsNQH0eNGTTOxTnkSM1XN+QMz3p6bOkAk+YetEW6FOCMwEFhjzdUwN:h1OuH0eNGunkt3+1z3p6iVCi
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-