General
-
Target
0a9561865c29160a23abf56753fb069d7d8a00455db338db7c400ce12d6d9ed4
-
Size
4.4MB
-
Sample
221125-fthzesge3y
-
MD5
157b2acb23ee2d40ab08ab8f269fbd52
-
SHA1
cae628a2ef1ee67c59dc93f8506459b7f257f0f0
-
SHA256
0a9561865c29160a23abf56753fb069d7d8a00455db338db7c400ce12d6d9ed4
-
SHA512
d26e0ca109fd12b10e253f664bd115520a7fe3f670d3797a9bcb322bc4b48d73f8c89df56e67c5b1e1a672217611fddb7ca9cbf57d9479f160ddcaf1783f08e2
-
SSDEEP
49152:mqk09VB9O6uUkK6Dmxup4/c6MUWgLptOyCzP5jL9buOBqFJB+lyzEJ3jGy:1/POIB6aWkpthCzP5FbuOBqFeYiTG
Malware Config
Targets
-
-
Target
0a9561865c29160a23abf56753fb069d7d8a00455db338db7c400ce12d6d9ed4
-
Size
4.4MB
-
MD5
157b2acb23ee2d40ab08ab8f269fbd52
-
SHA1
cae628a2ef1ee67c59dc93f8506459b7f257f0f0
-
SHA256
0a9561865c29160a23abf56753fb069d7d8a00455db338db7c400ce12d6d9ed4
-
SHA512
d26e0ca109fd12b10e253f664bd115520a7fe3f670d3797a9bcb322bc4b48d73f8c89df56e67c5b1e1a672217611fddb7ca9cbf57d9479f160ddcaf1783f08e2
-
SSDEEP
49152:mqk09VB9O6uUkK6Dmxup4/c6MUWgLptOyCzP5jL9buOBqFJB+lyzEJ3jGy:1/POIB6aWkpthCzP5FbuOBqFeYiTG
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-