General
-
Target
c22eb6455aa61cd9cec812f19827a4a09000f537ed841598fe47d9d80d249936
-
Size
2.5MB
-
Sample
221124-yfcjlaef28
-
MD5
4a33e1fe4e3ea033859fb843af4a469d
-
SHA1
76e5394dadd8ccc88361e78787e1d6545cfaa087
-
SHA256
c22eb6455aa61cd9cec812f19827a4a09000f537ed841598fe47d9d80d249936
-
SHA512
29fbd0c43972681be4070a0cf801a9d8ba6a878acc3d66d019d77b934d85635d396cadc572a4e1337184f4f3959d2fba0d3b8c45ceaf258580cf5d229d10617b
-
SSDEEP
49152:h1OsvZtE/e06bzN8IPMA3u3uenuu0X6vA3rYAqXz0+gmTyCA4:h1OSCezbzNve3ueE+p
Malware Config
Targets
-
-
Target
c22eb6455aa61cd9cec812f19827a4a09000f537ed841598fe47d9d80d249936
-
Size
2.5MB
-
MD5
4a33e1fe4e3ea033859fb843af4a469d
-
SHA1
76e5394dadd8ccc88361e78787e1d6545cfaa087
-
SHA256
c22eb6455aa61cd9cec812f19827a4a09000f537ed841598fe47d9d80d249936
-
SHA512
29fbd0c43972681be4070a0cf801a9d8ba6a878acc3d66d019d77b934d85635d396cadc572a4e1337184f4f3959d2fba0d3b8c45ceaf258580cf5d229d10617b
-
SSDEEP
49152:h1OsvZtE/e06bzN8IPMA3u3uenuu0X6vA3rYAqXz0+gmTyCA4:h1OSCezbzNve3ueE+p
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-