General
-
Target
a56031b561cf54e62b0f9261c5090eb6d7354975d5f55280fd0490ef1a65dbe0
-
Size
2.5MB
-
Sample
221124-z3zs3sdd5s
-
MD5
34941b2d143a257da58d05aa8cce7c7c
-
SHA1
c08612761d71586caef0b25b42a98be718b418f1
-
SHA256
a56031b561cf54e62b0f9261c5090eb6d7354975d5f55280fd0490ef1a65dbe0
-
SHA512
f60d3ace771d0213a5311e9c7a629816ae7bb686be1d48e4e15813599c56bf93125c47ff88cc27fe7957c2a0a470daef5059c445a442669926e1e84a109817bd
-
SSDEEP
49152:h1OsZ+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEO:h1OdQCjbKioVg3ArKh40B
Malware Config
Targets
-
-
Target
a56031b561cf54e62b0f9261c5090eb6d7354975d5f55280fd0490ef1a65dbe0
-
Size
2.5MB
-
MD5
34941b2d143a257da58d05aa8cce7c7c
-
SHA1
c08612761d71586caef0b25b42a98be718b418f1
-
SHA256
a56031b561cf54e62b0f9261c5090eb6d7354975d5f55280fd0490ef1a65dbe0
-
SHA512
f60d3ace771d0213a5311e9c7a629816ae7bb686be1d48e4e15813599c56bf93125c47ff88cc27fe7957c2a0a470daef5059c445a442669926e1e84a109817bd
-
SSDEEP
49152:h1OsZ+QK3xQpjajXKioFMpYphqd3ArqvFUmEaDxEAxh4UR9TEO:h1OdQCjbKioVg3ArKh40B
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-