General
-
Target
46f884f323b15d3c3b67ea33915bf28225a8558106c0a5379cdee7a1d2aa0440
-
Size
2.5MB
-
Sample
221125-chxfwsgf9y
-
MD5
cdbe4d28cd53e5f2a567de261dd1b35e
-
SHA1
2c8d5f097037dcdc3c031551d0aba08e25081cdf
-
SHA256
46f884f323b15d3c3b67ea33915bf28225a8558106c0a5379cdee7a1d2aa0440
-
SHA512
e8395fa18e4a2f8d97ecb3aa762e9fa236c2019cd928a41c539b4833be93dd7ef1bc3959a2f21796577cb0a1ecb6822d9cd12a7806cc5cc1d5b8afa5fd8d4bc8
-
SSDEEP
49152:h1OszTAHQDPTB3RnKWXUjuxZsHKddXx/WPKGL2ONrq8J8aUnbeZ9Y:h1O0TAqMjuxZH/Wpda
Malware Config
Targets
-
-
Target
46f884f323b15d3c3b67ea33915bf28225a8558106c0a5379cdee7a1d2aa0440
-
Size
2.5MB
-
MD5
cdbe4d28cd53e5f2a567de261dd1b35e
-
SHA1
2c8d5f097037dcdc3c031551d0aba08e25081cdf
-
SHA256
46f884f323b15d3c3b67ea33915bf28225a8558106c0a5379cdee7a1d2aa0440
-
SHA512
e8395fa18e4a2f8d97ecb3aa762e9fa236c2019cd928a41c539b4833be93dd7ef1bc3959a2f21796577cb0a1ecb6822d9cd12a7806cc5cc1d5b8afa5fd8d4bc8
-
SSDEEP
49152:h1OszTAHQDPTB3RnKWXUjuxZsHKddXx/WPKGL2ONrq8J8aUnbeZ9Y:h1O0TAqMjuxZH/Wpda
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-