General
-
Target
a68ee695d9f02800b49fc7f4090aadbc20dd6ec82716774815ba3d4bd051d198
-
Size
2.5MB
-
Sample
221124-z18cfadc4y
-
MD5
5a373c875179051cadbaeed3617b6552
-
SHA1
7efa5b94e0e25290cc23439f095dacd82e2d9400
-
SHA256
a68ee695d9f02800b49fc7f4090aadbc20dd6ec82716774815ba3d4bd051d198
-
SHA512
d6fabab38cad836ed83be07f1e32fecef9ca080fcf8097e595fbadbed64ab4df9cb19e83c7a7728cbd5a4ab32194c51fa5a17ae55f58c04a900f54f5ab56eef7
-
SSDEEP
49152:h1OsKSQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zm:h1OpSQY1DCqkck4apyLqt
Malware Config
Targets
-
-
Target
a68ee695d9f02800b49fc7f4090aadbc20dd6ec82716774815ba3d4bd051d198
-
Size
2.5MB
-
MD5
5a373c875179051cadbaeed3617b6552
-
SHA1
7efa5b94e0e25290cc23439f095dacd82e2d9400
-
SHA256
a68ee695d9f02800b49fc7f4090aadbc20dd6ec82716774815ba3d4bd051d198
-
SHA512
d6fabab38cad836ed83be07f1e32fecef9ca080fcf8097e595fbadbed64ab4df9cb19e83c7a7728cbd5a4ab32194c51fa5a17ae55f58c04a900f54f5ab56eef7
-
SSDEEP
49152:h1OsKSQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zm:h1OpSQY1DCqkck4apyLqt
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-