General
-
Target
c2d0a5578a6843311ef1c0ee9bc68e84a4774961a14f93672c0370d5ce1a9ae7
-
Size
2.5MB
-
Sample
221124-yebkxahf4y
-
MD5
8d750388fd5ff0a25c67ab5c4081ef36
-
SHA1
64a36985b0903720d49ab55bc37feaae5fd06d98
-
SHA256
c2d0a5578a6843311ef1c0ee9bc68e84a4774961a14f93672c0370d5ce1a9ae7
-
SHA512
0f7462eb7026954a4f81fa43744242cab8b41f3fd4213f877df85ddcee65d6e95ff83e68475bded6a32e06b69f35e964f81f823879f2bc44e5eb9aca02965ddb
-
SSDEEP
49152:h1OsgUc3R1YQeb1bR9qMS3te/+E+kzkeRutdQ3L3V/A9VeG:h1OHbRsTWe/Z0
Malware Config
Targets
-
-
Target
c2d0a5578a6843311ef1c0ee9bc68e84a4774961a14f93672c0370d5ce1a9ae7
-
Size
2.5MB
-
MD5
8d750388fd5ff0a25c67ab5c4081ef36
-
SHA1
64a36985b0903720d49ab55bc37feaae5fd06d98
-
SHA256
c2d0a5578a6843311ef1c0ee9bc68e84a4774961a14f93672c0370d5ce1a9ae7
-
SHA512
0f7462eb7026954a4f81fa43744242cab8b41f3fd4213f877df85ddcee65d6e95ff83e68475bded6a32e06b69f35e964f81f823879f2bc44e5eb9aca02965ddb
-
SSDEEP
49152:h1OsgUc3R1YQeb1bR9qMS3te/+E+kzkeRutdQ3L3V/A9VeG:h1OHbRsTWe/Z0
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-