General
-
Target
003b058b2e52088abfe019bea89f6313bf74410f8730edccec0c7b0a6fef340d
-
Size
4.5MB
-
Sample
221125-gc8desec64
-
MD5
ae2deccce2383c22134044d4419a9205
-
SHA1
78dd1483b221cf78825171dee4c2326531623492
-
SHA256
003b058b2e52088abfe019bea89f6313bf74410f8730edccec0c7b0a6fef340d
-
SHA512
b671f909398e8536039ebc8052d6d20eaa7989d43b272eee38939dd1c0503b69b1e12414798678605ddbd30404fb4aa33fffcf9b372449b4baeccb7212152cfd
-
SSDEEP
49152:LlkQ3etW30mzG0Paxup4LZAhdGKvghxfki1Ec7SKGjSlM/Zf0weeDNxL4:bOtWrq0XKKcn7SKGj8MNtLNxL
Malware Config
Targets
-
-
Target
003b058b2e52088abfe019bea89f6313bf74410f8730edccec0c7b0a6fef340d
-
Size
4.5MB
-
MD5
ae2deccce2383c22134044d4419a9205
-
SHA1
78dd1483b221cf78825171dee4c2326531623492
-
SHA256
003b058b2e52088abfe019bea89f6313bf74410f8730edccec0c7b0a6fef340d
-
SHA512
b671f909398e8536039ebc8052d6d20eaa7989d43b272eee38939dd1c0503b69b1e12414798678605ddbd30404fb4aa33fffcf9b372449b4baeccb7212152cfd
-
SSDEEP
49152:LlkQ3etW30mzG0Paxup4LZAhdGKvghxfki1Ec7SKGjSlM/Zf0weeDNxL4:bOtWrq0XKKcn7SKGj8MNtLNxL
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-