General
-
Target
511a407ebba18e3fbcb4bd1b177f9675e2cfae84298db6e8041e276421c07b4b
-
Size
2.5MB
-
Sample
221125-b1r4fsff4z
-
MD5
8826a75b1de45285c03f508474694fb7
-
SHA1
d7057c953ba950ea6f265b3add15c93619deb50b
-
SHA256
511a407ebba18e3fbcb4bd1b177f9675e2cfae84298db6e8041e276421c07b4b
-
SHA512
6e7af7605a285f0123d8e524209099c6af3f4ecc4e90468cd19b1f0c443d6082ab465e95c22ff7591259868b951ac6d9c47279a5c5f6fd71b6bf60bbb2eea51a
-
SSDEEP
49152:h1Os/TAHQDPTB3RnKWXUjuxZsHKddXx/WPKGL2ONrq8J8aUnbeZ9T:h1OQTAqMjuxZH/Wpdp
Malware Config
Targets
-
-
Target
511a407ebba18e3fbcb4bd1b177f9675e2cfae84298db6e8041e276421c07b4b
-
Size
2.5MB
-
MD5
8826a75b1de45285c03f508474694fb7
-
SHA1
d7057c953ba950ea6f265b3add15c93619deb50b
-
SHA256
511a407ebba18e3fbcb4bd1b177f9675e2cfae84298db6e8041e276421c07b4b
-
SHA512
6e7af7605a285f0123d8e524209099c6af3f4ecc4e90468cd19b1f0c443d6082ab465e95c22ff7591259868b951ac6d9c47279a5c5f6fd71b6bf60bbb2eea51a
-
SSDEEP
49152:h1Os/TAHQDPTB3RnKWXUjuxZsHKddXx/WPKGL2ONrq8J8aUnbeZ9T:h1OQTAqMjuxZH/Wpdp
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-