General
-
Target
4ba10d54555d419245bf9886b674a86879b7722e63fcf474cdb809d437eaeac2
-
Size
2.5MB
-
Sample
221125-cafheadb65
-
MD5
0ad6e525381ebeb033b5a27926f90bdd
-
SHA1
509c1aa9ceb7a659d3cf29920e0ff9e9e6f5009c
-
SHA256
4ba10d54555d419245bf9886b674a86879b7722e63fcf474cdb809d437eaeac2
-
SHA512
397d091ee1ac3ad04aaa562cd28b7d8d98e00a301a0a3cd3a6e3985a7fbeb8ff349a37a3e354d8ad9822a2c7ed39702bee77ade3d78d79d203ec3a45ded33cca
-
SSDEEP
49152:h1Os6SQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zA:h1OtSQY1DCqkck4apyLqT
Malware Config
Targets
-
-
Target
4ba10d54555d419245bf9886b674a86879b7722e63fcf474cdb809d437eaeac2
-
Size
2.5MB
-
MD5
0ad6e525381ebeb033b5a27926f90bdd
-
SHA1
509c1aa9ceb7a659d3cf29920e0ff9e9e6f5009c
-
SHA256
4ba10d54555d419245bf9886b674a86879b7722e63fcf474cdb809d437eaeac2
-
SHA512
397d091ee1ac3ad04aaa562cd28b7d8d98e00a301a0a3cd3a6e3985a7fbeb8ff349a37a3e354d8ad9822a2c7ed39702bee77ade3d78d79d203ec3a45ded33cca
-
SSDEEP
49152:h1Os6SQeb71DLvFzAqRmyyVchO4apKHcHhXa3FXWlPC1IS5zA:h1OtSQY1DCqkck4apyLqT
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-