General
-
Target
acc787b8a54945907cfb9a56e3f5fd2bd70ac21c5ab3e2cfdfaa8eea30f2984d
-
Size
2.5MB
-
Sample
221124-zpdnpahd72
-
MD5
3c710dc204febdcda6704e4fc6285e2c
-
SHA1
526c9de64b70a6da260d60f6bb36861bfd473969
-
SHA256
acc787b8a54945907cfb9a56e3f5fd2bd70ac21c5ab3e2cfdfaa8eea30f2984d
-
SHA512
f2c86baf6e0dcc603d356fa9509692d15c9048a61d0b5e1a76c904cec4105078bac0e7deda7c8cb7f4ba76b5740d13cbd0b01cd60cce5b74fe405c69faec11e0
-
SSDEEP
49152:h1OsPyDFXmj+BHBALGk7GNIgSDjjQkzYznJKOZaB/Isx8:h1O20JSqALGkqaDj78
Malware Config
Targets
-
-
Target
acc787b8a54945907cfb9a56e3f5fd2bd70ac21c5ab3e2cfdfaa8eea30f2984d
-
Size
2.5MB
-
MD5
3c710dc204febdcda6704e4fc6285e2c
-
SHA1
526c9de64b70a6da260d60f6bb36861bfd473969
-
SHA256
acc787b8a54945907cfb9a56e3f5fd2bd70ac21c5ab3e2cfdfaa8eea30f2984d
-
SHA512
f2c86baf6e0dcc603d356fa9509692d15c9048a61d0b5e1a76c904cec4105078bac0e7deda7c8cb7f4ba76b5740d13cbd0b01cd60cce5b74fe405c69faec11e0
-
SSDEEP
49152:h1OsPyDFXmj+BHBALGk7GNIgSDjjQkzYznJKOZaB/Isx8:h1O20JSqALGkqaDj78
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-