General
-
Target
9cba8a133d5a2bbbed73a121723f317b9fc31c828694f96b381980b91a4968e9
-
Size
2.0MB
-
Sample
221125-h7gdvseb8t
-
MD5
e0e4b004ccf7e392e6de68d0c472e93d
-
SHA1
80ad5af31bfd46c113bd2771d47cdd1519fe7e07
-
SHA256
9cba8a133d5a2bbbed73a121723f317b9fc31c828694f96b381980b91a4968e9
-
SHA512
6e226bc3c3dccbab6728b8330be913fe453cc3e64154c11585783f826e448a55032ae03417cfaf45a0c8f04d770c36d8b66e57d3650f0010ff9f3477ce2db663
-
SSDEEP
49152:5k0TqM6y3oEJO1hqziCkZzh5Ooe2ZrfH/wKMpVo:NqGoPSkZzDOoeifH/wV
Malware Config
Targets
-
-
Target
9cba8a133d5a2bbbed73a121723f317b9fc31c828694f96b381980b91a4968e9
-
Size
2.0MB
-
MD5
e0e4b004ccf7e392e6de68d0c472e93d
-
SHA1
80ad5af31bfd46c113bd2771d47cdd1519fe7e07
-
SHA256
9cba8a133d5a2bbbed73a121723f317b9fc31c828694f96b381980b91a4968e9
-
SHA512
6e226bc3c3dccbab6728b8330be913fe453cc3e64154c11585783f826e448a55032ae03417cfaf45a0c8f04d770c36d8b66e57d3650f0010ff9f3477ce2db663
-
SSDEEP
49152:5k0TqM6y3oEJO1hqziCkZzh5Ooe2ZrfH/wKMpVo:NqGoPSkZzDOoeifH/wV
Score8/10-
Executes dropped EXE
-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-