General
-
Target
c132ad86fbcc29f69bc14ef3ae8f41d55203c9fc7de22f88a7a9026323d2fc38
-
Size
2.5MB
-
Sample
221124-yg5lrseg22
-
MD5
37dd51acc78742b396476ff38375aaba
-
SHA1
b37ca7082a493feb34153a0af29fe0c8dddbda30
-
SHA256
c132ad86fbcc29f69bc14ef3ae8f41d55203c9fc7de22f88a7a9026323d2fc38
-
SHA512
14bcde6883594595845aac170d46495efba7bb8fded8abab0514830eb8b428d5ecf80bf22568d26efa86c6632a962ff8e0a196befe0b5211b7250d910564f127
-
SSDEEP
49152:h1OslUc3R1YQeb1bR9qMS3te/+E+kzkeRutdQ3L3V/A9VeC:h1OgbRsTWe/Zo
Malware Config
Targets
-
-
Target
c132ad86fbcc29f69bc14ef3ae8f41d55203c9fc7de22f88a7a9026323d2fc38
-
Size
2.5MB
-
MD5
37dd51acc78742b396476ff38375aaba
-
SHA1
b37ca7082a493feb34153a0af29fe0c8dddbda30
-
SHA256
c132ad86fbcc29f69bc14ef3ae8f41d55203c9fc7de22f88a7a9026323d2fc38
-
SHA512
14bcde6883594595845aac170d46495efba7bb8fded8abab0514830eb8b428d5ecf80bf22568d26efa86c6632a962ff8e0a196befe0b5211b7250d910564f127
-
SSDEEP
49152:h1OslUc3R1YQeb1bR9qMS3te/+E+kzkeRutdQ3L3V/A9VeC:h1OgbRsTWe/Zo
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-