General
-
Target
2241916d7024c9bac9a0ce1ace03aa0524658d10ec879957aa2c8c719b8e03b0
-
Size
3.7MB
-
Sample
221125-egtpqadd41
-
MD5
edd4b1bddbf89097e8bdf9e209a45f01
-
SHA1
86d5823a9f6f891525ec212a990d74e25b7c0ce7
-
SHA256
2241916d7024c9bac9a0ce1ace03aa0524658d10ec879957aa2c8c719b8e03b0
-
SHA512
40a71bbc429369c0a836091598cb3acc39cc1ff968c4d1126f6e49ad30b9f17a3601902a3a9364ec326fe094cee7b5ca80b68404cae35744d321d53bad33f41d
-
SSDEEP
49152:JIlv+bEuDa8gEaZI7ydmhBLIACb7ox74gueECKwmV1v7ViFq9rzQhfsDaig:6uHgEe4BLI3ox7huhCKdnzN9rzEf
Malware Config
Targets
-
-
Target
2241916d7024c9bac9a0ce1ace03aa0524658d10ec879957aa2c8c719b8e03b0
-
Size
3.7MB
-
MD5
edd4b1bddbf89097e8bdf9e209a45f01
-
SHA1
86d5823a9f6f891525ec212a990d74e25b7c0ce7
-
SHA256
2241916d7024c9bac9a0ce1ace03aa0524658d10ec879957aa2c8c719b8e03b0
-
SHA512
40a71bbc429369c0a836091598cb3acc39cc1ff968c4d1126f6e49ad30b9f17a3601902a3a9364ec326fe094cee7b5ca80b68404cae35744d321d53bad33f41d
-
SSDEEP
49152:JIlv+bEuDa8gEaZI7ydmhBLIACb7ox74gueECKwmV1v7ViFq9rzQhfsDaig:6uHgEe4BLI3ox7huhCKdnzN9rzEf
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-