General
-
Target
a6e003893f3e1ef29e332c189c6e122c50ce2e6ab123bcbd1d2542a9dcd0e28a
-
Size
920KB
-
Sample
221124-z1kldaab48
-
MD5
ebcd16eab8f51f545ee057c03d55df00
-
SHA1
53fb95a7f8d28763694f6e4fd4bca95c7e63b219
-
SHA256
a6e003893f3e1ef29e332c189c6e122c50ce2e6ab123bcbd1d2542a9dcd0e28a
-
SHA512
bf6a53019ba2dd17e2f23a8c0ba5ca90544077f3e605d705f218d3712b50e214957947dfb2a9348c0c766d660cb43326ff62f1101ea40d3e08b9f277363f86ab
-
SSDEEP
24576:h1OYdaOAMtdHAqcdDVhYwiei7+EpFAh/kKz:h1OsBPHVmVhYwiLtKkKz
Malware Config
Targets
-
-
Target
a6e003893f3e1ef29e332c189c6e122c50ce2e6ab123bcbd1d2542a9dcd0e28a
-
Size
920KB
-
MD5
ebcd16eab8f51f545ee057c03d55df00
-
SHA1
53fb95a7f8d28763694f6e4fd4bca95c7e63b219
-
SHA256
a6e003893f3e1ef29e332c189c6e122c50ce2e6ab123bcbd1d2542a9dcd0e28a
-
SHA512
bf6a53019ba2dd17e2f23a8c0ba5ca90544077f3e605d705f218d3712b50e214957947dfb2a9348c0c766d660cb43326ff62f1101ea40d3e08b9f277363f86ab
-
SSDEEP
24576:h1OYdaOAMtdHAqcdDVhYwiei7+EpFAh/kKz:h1OsBPHVmVhYwiLtKkKz
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-