General
-
Target
c2890a820bcf3d5299f1994f2383a6ab409e7ce907c790d1349bb82038e2003a
-
Size
2.5MB
-
Sample
221124-yemyyahf5z
-
MD5
d40dcb87cb5c40003b09d6f0f67df9bb
-
SHA1
2a9ed21b3a8628504528d0c94c09fa030ca1d985
-
SHA256
c2890a820bcf3d5299f1994f2383a6ab409e7ce907c790d1349bb82038e2003a
-
SHA512
47aa3d40a2ee2b856807100644e3dd053806228102f199ac81b0a92dde43d2070c9936e51cd18f4cfb71bb11f9a0ec94c6ad5e652c36f0e4320797d4f4fd1f0f
-
SSDEEP
49152:h1OsOsNQH0eNGTTOxTnkSM1XN+QMz3p6bOkAk+YetEW6FOCMwEFhjzdUwG:h1O9H0eNGunkt3+1z3p6iVCZ
Malware Config
Targets
-
-
Target
c2890a820bcf3d5299f1994f2383a6ab409e7ce907c790d1349bb82038e2003a
-
Size
2.5MB
-
MD5
d40dcb87cb5c40003b09d6f0f67df9bb
-
SHA1
2a9ed21b3a8628504528d0c94c09fa030ca1d985
-
SHA256
c2890a820bcf3d5299f1994f2383a6ab409e7ce907c790d1349bb82038e2003a
-
SHA512
47aa3d40a2ee2b856807100644e3dd053806228102f199ac81b0a92dde43d2070c9936e51cd18f4cfb71bb11f9a0ec94c6ad5e652c36f0e4320797d4f4fd1f0f
-
SSDEEP
49152:h1OsOsNQH0eNGTTOxTnkSM1XN+QMz3p6bOkAk+YetEW6FOCMwEFhjzdUwG:h1O9H0eNGunkt3+1z3p6iVCZ
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-