General
-
Target
4bbc377cae8e928e1add8617d5593a9f285da84ce17d520f18b014e6370215e8
-
Size
2.5MB
-
Sample
221125-b98skadb57
-
MD5
e14b9eb94670efa7c03a0b2b797daa53
-
SHA1
b6d8d9a26f093bcfe3f5ea2f28909982810cfa4a
-
SHA256
4bbc377cae8e928e1add8617d5593a9f285da84ce17d520f18b014e6370215e8
-
SHA512
c383debbeaac7b001939807ee19ae820a26edd0400f1faa52ac3b8fae02b0a82224b0cbe0d921a6757971d735e2430c30715a4bb63b72af88c5f38e07dcc2c9d
-
SSDEEP
49152:h1OshTAHQDPTB3RnKWXUjuxZsHKddXx/WPKGL2ONrq8J8aUnbeZ9F:h1OqTAqMjuxZH/Wpdf
Malware Config
Targets
-
-
Target
4bbc377cae8e928e1add8617d5593a9f285da84ce17d520f18b014e6370215e8
-
Size
2.5MB
-
MD5
e14b9eb94670efa7c03a0b2b797daa53
-
SHA1
b6d8d9a26f093bcfe3f5ea2f28909982810cfa4a
-
SHA256
4bbc377cae8e928e1add8617d5593a9f285da84ce17d520f18b014e6370215e8
-
SHA512
c383debbeaac7b001939807ee19ae820a26edd0400f1faa52ac3b8fae02b0a82224b0cbe0d921a6757971d735e2430c30715a4bb63b72af88c5f38e07dcc2c9d
-
SSDEEP
49152:h1OshTAHQDPTB3RnKWXUjuxZsHKddXx/WPKGL2ONrq8J8aUnbeZ9F:h1OqTAqMjuxZH/Wpdf
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-