General
-
Target
09e58864366b07583e1c206eef744e43f128c1371be942f455cd0265777ed4b9
-
Size
4.1MB
-
Sample
221125-fvendsge7w
-
MD5
b6d48f2959b66e7bf96e1f89b8c180ea
-
SHA1
d5b4be4062c9e87c08d8e526bf79f5e6c6cf023a
-
SHA256
09e58864366b07583e1c206eef744e43f128c1371be942f455cd0265777ed4b9
-
SHA512
fc36eb0d46792adb54c3a9fc8b73bd1e366996077acf691de291334df2eb9266eb45ae8ab8fb23d3f1d8fcf658919d5788046dda0cd7f935c0c2b03a58c376a0
-
SSDEEP
49152:y8HmpxKfNBfopj8hmA0wEZlnfwZU5BcumwKbUT9FiDHvrZpuWO3ATPRDb:yEmsnoeAZnKb6Sv1puWOwb1
Malware Config
Targets
-
-
Target
09e58864366b07583e1c206eef744e43f128c1371be942f455cd0265777ed4b9
-
Size
4.1MB
-
MD5
b6d48f2959b66e7bf96e1f89b8c180ea
-
SHA1
d5b4be4062c9e87c08d8e526bf79f5e6c6cf023a
-
SHA256
09e58864366b07583e1c206eef744e43f128c1371be942f455cd0265777ed4b9
-
SHA512
fc36eb0d46792adb54c3a9fc8b73bd1e366996077acf691de291334df2eb9266eb45ae8ab8fb23d3f1d8fcf658919d5788046dda0cd7f935c0c2b03a58c376a0
-
SSDEEP
49152:y8HmpxKfNBfopj8hmA0wEZlnfwZU5BcumwKbUT9FiDHvrZpuWO3ATPRDb:yEmsnoeAZnKb6Sv1puWOwb1
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-