General
-
Target
ad7dcda900b09c87ec4092c492b2c53146be7f7e0313940258251ed292ef96ca
-
Size
2.5MB
-
Sample
221124-zm43vshc98
-
MD5
0de2bcd7f0289975042ff6f3b8aed417
-
SHA1
36c1d9090ce1cbc2b07ad3b83fd057abb8b53d9a
-
SHA256
ad7dcda900b09c87ec4092c492b2c53146be7f7e0313940258251ed292ef96ca
-
SHA512
571983e450ee98a67e400afb6f283d0122a3565e5b6e4e9a6fd367af38a5ee321459ad24ed1c14799492e9e33811e7ba4970d0dd611402b6c36dbed7bbed48ec
-
SSDEEP
49152:h1Os3PHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0HV:h1OYHVl71RnFXINxv0
Malware Config
Targets
-
-
Target
ad7dcda900b09c87ec4092c492b2c53146be7f7e0313940258251ed292ef96ca
-
Size
2.5MB
-
MD5
0de2bcd7f0289975042ff6f3b8aed417
-
SHA1
36c1d9090ce1cbc2b07ad3b83fd057abb8b53d9a
-
SHA256
ad7dcda900b09c87ec4092c492b2c53146be7f7e0313940258251ed292ef96ca
-
SHA512
571983e450ee98a67e400afb6f283d0122a3565e5b6e4e9a6fd367af38a5ee321459ad24ed1c14799492e9e33811e7ba4970d0dd611402b6c36dbed7bbed48ec
-
SSDEEP
49152:h1Os3PHVmVhYwiLtKkKyW4nFU0I+NP/f7I3lMOaYjdxvL0HV:h1OYHVl71RnFXINxv0
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-