General
-
Target
db88410267bfe3f0f8715368b08c9931ba04f99920cd1415ce5badd410f6cdb1
-
Size
3.8MB
-
Sample
221125-hrbtfada5t
-
MD5
1c8fe52686fc9f1d5cbd7927df52b3df
-
SHA1
3c513432778b82712ea940026b2d2e75029dadbe
-
SHA256
db88410267bfe3f0f8715368b08c9931ba04f99920cd1415ce5badd410f6cdb1
-
SHA512
dcbbdca694edefeccfe0ac865fe14ff7785cd7f7202541031249722eb81b455b031b13d2d54c25b48fb119ac08e97b1aa0abaaf81751547656db3dba314ef6c2
-
SSDEEP
98304:fbwrAvy6VPu2sUVGo6OMfgeab0JUzACZIj5/GLOXKV4XmQaokCx/:MrAacPuzTmzA
Malware Config
Targets
-
-
Target
db88410267bfe3f0f8715368b08c9931ba04f99920cd1415ce5badd410f6cdb1
-
Size
3.8MB
-
MD5
1c8fe52686fc9f1d5cbd7927df52b3df
-
SHA1
3c513432778b82712ea940026b2d2e75029dadbe
-
SHA256
db88410267bfe3f0f8715368b08c9931ba04f99920cd1415ce5badd410f6cdb1
-
SHA512
dcbbdca694edefeccfe0ac865fe14ff7785cd7f7202541031249722eb81b455b031b13d2d54c25b48fb119ac08e97b1aa0abaaf81751547656db3dba314ef6c2
-
SSDEEP
98304:fbwrAvy6VPu2sUVGo6OMfgeab0JUzACZIj5/GLOXKV4XmQaokCx/:MrAacPuzTmzA
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-