General
-
Target
244355f005a2a987bb6d9e25b2dfe03370425c125f5f828c50619cfca7762d79
-
Size
3.6MB
-
Sample
221125-j3zv3sda66
-
MD5
1ec25439f76dc85ea429d8f5400b7562
-
SHA1
adac1627ee8d0e9977758f6005683c306f9afcbc
-
SHA256
244355f005a2a987bb6d9e25b2dfe03370425c125f5f828c50619cfca7762d79
-
SHA512
b1fb76de28c6c67612d6ab7537733d23444f0daea961bd3f04090576cb789bbba92acb0c1d87ca4f6c69802b10a00e0a541b0c6c9632c48dfa264d57e238ad71
-
SSDEEP
49152:RdjwajqmMZdfoQOegyW1hifPMHiA8kN6ukGervB0dkzBjE/T0adE7L:RnjYoKgZ1h0UHzHN6uj6KdkzGJ
Malware Config
Targets
-
-
Target
244355f005a2a987bb6d9e25b2dfe03370425c125f5f828c50619cfca7762d79
-
Size
3.6MB
-
MD5
1ec25439f76dc85ea429d8f5400b7562
-
SHA1
adac1627ee8d0e9977758f6005683c306f9afcbc
-
SHA256
244355f005a2a987bb6d9e25b2dfe03370425c125f5f828c50619cfca7762d79
-
SHA512
b1fb76de28c6c67612d6ab7537733d23444f0daea961bd3f04090576cb789bbba92acb0c1d87ca4f6c69802b10a00e0a541b0c6c9632c48dfa264d57e238ad71
-
SSDEEP
49152:RdjwajqmMZdfoQOegyW1hifPMHiA8kN6ukGervB0dkzBjE/T0adE7L:RnjYoKgZ1h0UHzHN6uj6KdkzGJ
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-