General
-
Target
a4b8d570bdb59158bf22e6a3fa5ae1a712835d9d8e5b76ead54ee53371fea4c8
-
Size
932KB
-
Sample
221124-z413jadd9y
-
MD5
2f7283b34c0d053ec5d4ded91f199a23
-
SHA1
c266a19ff2be995258fd641604dae0b40ef89581
-
SHA256
a4b8d570bdb59158bf22e6a3fa5ae1a712835d9d8e5b76ead54ee53371fea4c8
-
SHA512
b12a0fdecc1e7339192715de782eb2b702f7fb2eb6915725420b7587bacfa9d1ae6f27da6f4a21c0af550844be4986e833847fd5e6281a40c982e09d21717e62
-
SSDEEP
24576:h1OYdaOkCZ/iWCvu/2sWsJA/jlt+DHhsV:h1OsiCpYO/dJJDHhsV
Malware Config
Targets
-
-
Target
a4b8d570bdb59158bf22e6a3fa5ae1a712835d9d8e5b76ead54ee53371fea4c8
-
Size
932KB
-
MD5
2f7283b34c0d053ec5d4ded91f199a23
-
SHA1
c266a19ff2be995258fd641604dae0b40ef89581
-
SHA256
a4b8d570bdb59158bf22e6a3fa5ae1a712835d9d8e5b76ead54ee53371fea4c8
-
SHA512
b12a0fdecc1e7339192715de782eb2b702f7fb2eb6915725420b7587bacfa9d1ae6f27da6f4a21c0af550844be4986e833847fd5e6281a40c982e09d21717e62
-
SSDEEP
24576:h1OYdaOkCZ/iWCvu/2sWsJA/jlt+DHhsV:h1OsiCpYO/dJJDHhsV
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Drops file in System32 directory
-