General
-
Target
5cddc5e7afef47072db1c81f96a912fb0c445d3daab56e7ffdcc81f10b967d10
-
Size
2.1MB
-
Sample
221125-1yrscaab37
-
MD5
1f66b579fd621c6a16d0d5d994ed01ee
-
SHA1
0318728c1c490ccadecaa3515ee66a6d47c24319
-
SHA256
5cddc5e7afef47072db1c81f96a912fb0c445d3daab56e7ffdcc81f10b967d10
-
SHA512
e80b02c655b6bb31635db3109b56a09f037d8f99f8fcdf41b2f8f5d593cac41cffe0cfda899fe419f33749685551e9cbbbfce4f5141dc28a12e3429adee5dfc7
-
SSDEEP
49152:h1OsAyuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8PciZ:h1OfgoP9oM5LFB
Malware Config
Targets
-
-
Target
5cddc5e7afef47072db1c81f96a912fb0c445d3daab56e7ffdcc81f10b967d10
-
Size
2.1MB
-
MD5
1f66b579fd621c6a16d0d5d994ed01ee
-
SHA1
0318728c1c490ccadecaa3515ee66a6d47c24319
-
SHA256
5cddc5e7afef47072db1c81f96a912fb0c445d3daab56e7ffdcc81f10b967d10
-
SHA512
e80b02c655b6bb31635db3109b56a09f037d8f99f8fcdf41b2f8f5d593cac41cffe0cfda899fe419f33749685551e9cbbbfce4f5141dc28a12e3429adee5dfc7
-
SSDEEP
49152:h1OsAyuyoY0IKAVWQrQSM5eeHY1h2PlSUQ8PciZ:h1OfgoP9oM5LFB
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-