General
-
Target
48377990a627fd28859862e7328916ec1ddc95d8eab3cb83c73c4720ff52ff7e
-
Size
2.5MB
-
Sample
221125-cfyk6sde94
-
MD5
1d8d2ab0cf1721a8448416c9eea1aa7a
-
SHA1
89c797f781f43f66e9135a33158a4c55a1b220ac
-
SHA256
48377990a627fd28859862e7328916ec1ddc95d8eab3cb83c73c4720ff52ff7e
-
SHA512
6082722fc35a20b8765e237a2e5a2f11ff0409fb05f6ed6d0a37d5f366b763a275181fb65cd49997db39d1f4f3ce47dd7deca247513890102e0d5f25a215e93a
-
SSDEEP
49152:h1Os/CpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bk7:h1O/ly7kNfrNq47
Malware Config
Targets
-
-
Target
48377990a627fd28859862e7328916ec1ddc95d8eab3cb83c73c4720ff52ff7e
-
Size
2.5MB
-
MD5
1d8d2ab0cf1721a8448416c9eea1aa7a
-
SHA1
89c797f781f43f66e9135a33158a4c55a1b220ac
-
SHA256
48377990a627fd28859862e7328916ec1ddc95d8eab3cb83c73c4720ff52ff7e
-
SHA512
6082722fc35a20b8765e237a2e5a2f11ff0409fb05f6ed6d0a37d5f366b763a275181fb65cd49997db39d1f4f3ce47dd7deca247513890102e0d5f25a215e93a
-
SSDEEP
49152:h1Os/CpYO/dJJDHhs6oxRkNfehWfNs4VGufZ9JODSTz4bk7:h1O/ly7kNfrNq47
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-