General
-
Target
85e349d32399386d238fc541af56cf8814ce8498cb5f4b463297270d903ed17b
-
Size
3.8MB
-
Sample
221125-jdehvabb73
-
MD5
2770087e0a50572bc792305441321954
-
SHA1
2cae181ef0748acd03cfac3d370e7ce572566ab9
-
SHA256
85e349d32399386d238fc541af56cf8814ce8498cb5f4b463297270d903ed17b
-
SHA512
60d3b466625861909cb674b74679a5691b96c15ef5b958e150409a019c0f622df710043c8de0ba3d488fd30eb912c83051841c0d3b2c9de6f6af1dd38b031011
-
SSDEEP
49152:gSmiYYyMSQVpvVl8R3Sso29dgiRBJLxvxZ/H74eNO/Jo+M/+/shIi9YSvMJRH:uilLC3Sy9dgipLxzH8eNO/jM/+/sXC
Malware Config
Targets
-
-
Target
85e349d32399386d238fc541af56cf8814ce8498cb5f4b463297270d903ed17b
-
Size
3.8MB
-
MD5
2770087e0a50572bc792305441321954
-
SHA1
2cae181ef0748acd03cfac3d370e7ce572566ab9
-
SHA256
85e349d32399386d238fc541af56cf8814ce8498cb5f4b463297270d903ed17b
-
SHA512
60d3b466625861909cb674b74679a5691b96c15ef5b958e150409a019c0f622df710043c8de0ba3d488fd30eb912c83051841c0d3b2c9de6f6af1dd38b031011
-
SSDEEP
49152:gSmiYYyMSQVpvVl8R3Sso29dgiRBJLxvxZ/H74eNO/Jo+M/+/shIi9YSvMJRH:uilLC3Sy9dgipLxzH8eNO/jM/+/sXC
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-