General
-
Target
34e9713183aafe7957ce9ef36603c0faeb30d2fa189d88e4177930cde1f66b6d
-
Size
4.2MB
-
Sample
221125-df71aaba2v
-
MD5
312ef4a69689c6e2095ab9e3bbab72ee
-
SHA1
807f3faa68cea817e730fa0c5121d27bafa6ecca
-
SHA256
34e9713183aafe7957ce9ef36603c0faeb30d2fa189d88e4177930cde1f66b6d
-
SHA512
57d275b6ea139ad03ac1cd122645341692f78bbf0de85520a8a094dc431efa445bfd8e6c79e0db893da035fcf9401e3bcafd5fa6391a9534d2d8333ecfdba3e3
-
SSDEEP
98304:h9nS4dVem7iGA0Xc9tSN2WGTvUSNO9nqHb+Sh:rDq9kN2WG3NoqHb+
Malware Config
Targets
-
-
Target
34e9713183aafe7957ce9ef36603c0faeb30d2fa189d88e4177930cde1f66b6d
-
Size
4.2MB
-
MD5
312ef4a69689c6e2095ab9e3bbab72ee
-
SHA1
807f3faa68cea817e730fa0c5121d27bafa6ecca
-
SHA256
34e9713183aafe7957ce9ef36603c0faeb30d2fa189d88e4177930cde1f66b6d
-
SHA512
57d275b6ea139ad03ac1cd122645341692f78bbf0de85520a8a094dc431efa445bfd8e6c79e0db893da035fcf9401e3bcafd5fa6391a9534d2d8333ecfdba3e3
-
SSDEEP
98304:h9nS4dVem7iGA0Xc9tSN2WGTvUSNO9nqHb+Sh:rDq9kN2WG3NoqHb+
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-