General
-
Target
305c29d8ed3e657e60316496050637d10b404be9c14e1d94c40f73885074bcf0
-
Size
4.1MB
-
Sample
221125-dpy4qsbe7w
-
MD5
db146b593fea3eab2fdce69dbb62079b
-
SHA1
b8fb39c3d18c817e3caf034fe59be3aa4467be52
-
SHA256
305c29d8ed3e657e60316496050637d10b404be9c14e1d94c40f73885074bcf0
-
SHA512
f915a680348ef85037c72ee49e45ef4f71f4883d6a4f8c2ed9eb06400e0b3e405031d6c6430016ad7b4ba007a76e6d125e9cdfe7a9f75af41368d81e9e197004
-
SSDEEP
49152:2JIm/fqKT/SFDjMhFA0wzZ+nfwZU5BcumfhKbUT9FioOnSyaelQmEbp7Yuw8b8:2KmdGFgsZ3Kb6gaADElZwy
Malware Config
Targets
-
-
Target
305c29d8ed3e657e60316496050637d10b404be9c14e1d94c40f73885074bcf0
-
Size
4.1MB
-
MD5
db146b593fea3eab2fdce69dbb62079b
-
SHA1
b8fb39c3d18c817e3caf034fe59be3aa4467be52
-
SHA256
305c29d8ed3e657e60316496050637d10b404be9c14e1d94c40f73885074bcf0
-
SHA512
f915a680348ef85037c72ee49e45ef4f71f4883d6a4f8c2ed9eb06400e0b3e405031d6c6430016ad7b4ba007a76e6d125e9cdfe7a9f75af41368d81e9e197004
-
SSDEEP
49152:2JIm/fqKT/SFDjMhFA0wzZ+nfwZU5BcumfhKbUT9FioOnSyaelQmEbp7Yuw8b8:2KmdGFgsZ3Kb6gaADElZwy
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-