General
-
Target
52cef27eafaaf99d9f7df00b9370170244e7b153782c8776f6044ffc5331771a
-
Size
2.5MB
-
Sample
221125-bx1w7acc89
-
MD5
c9b3f8ac53a6d907a47981dd5a27aa01
-
SHA1
ad3e31cbb7b15d9df14e7f8dab2984ba991dfbce
-
SHA256
52cef27eafaaf99d9f7df00b9370170244e7b153782c8776f6044ffc5331771a
-
SHA512
7d729da5822c7f4443e9935f702542c43275ed869d376c47ea47199448b33cb1b933256bf3d21fd61b51ef2915369bc891d3f19253b5af4fae9ef1ac3f7edc5e
-
SSDEEP
49152:h1OswCpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bkz:h1Okly7kNfrNq4z
Malware Config
Targets
-
-
Target
52cef27eafaaf99d9f7df00b9370170244e7b153782c8776f6044ffc5331771a
-
Size
2.5MB
-
MD5
c9b3f8ac53a6d907a47981dd5a27aa01
-
SHA1
ad3e31cbb7b15d9df14e7f8dab2984ba991dfbce
-
SHA256
52cef27eafaaf99d9f7df00b9370170244e7b153782c8776f6044ffc5331771a
-
SHA512
7d729da5822c7f4443e9935f702542c43275ed869d376c47ea47199448b33cb1b933256bf3d21fd61b51ef2915369bc891d3f19253b5af4fae9ef1ac3f7edc5e
-
SSDEEP
49152:h1OswCpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bkz:h1Okly7kNfrNq4z
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-