General
-
Target
628d3464396cbf25c044cd0dcd4249f6084adfe17374cd48c8b120e28703f922
-
Size
3.8MB
-
Sample
221125-jm1gnsfd51
-
MD5
a29706979eae1b9aa0cda17dc93ffabe
-
SHA1
4b181be47bda00f7213cf0f7843e790e272e8170
-
SHA256
628d3464396cbf25c044cd0dcd4249f6084adfe17374cd48c8b120e28703f922
-
SHA512
4b95e5cfeb24a0980a712276a67622f9aeb8b5ac219b906e4c608321f668b2bfa711352dd0177c418d6f6d634a9b872447ab51a3d79c0fd9b86d02ed31e685af
-
SSDEEP
98304:FdkFv+TNq5bJC8EgdU+gFmuTUo5eA7iWFUsR48p+pqH:Fdi+T0RJC8u+apUo
Malware Config
Targets
-
-
Target
628d3464396cbf25c044cd0dcd4249f6084adfe17374cd48c8b120e28703f922
-
Size
3.8MB
-
MD5
a29706979eae1b9aa0cda17dc93ffabe
-
SHA1
4b181be47bda00f7213cf0f7843e790e272e8170
-
SHA256
628d3464396cbf25c044cd0dcd4249f6084adfe17374cd48c8b120e28703f922
-
SHA512
4b95e5cfeb24a0980a712276a67622f9aeb8b5ac219b906e4c608321f668b2bfa711352dd0177c418d6f6d634a9b872447ab51a3d79c0fd9b86d02ed31e685af
-
SSDEEP
98304:FdkFv+TNq5bJC8EgdU+gFmuTUo5eA7iWFUsR48p+pqH:Fdi+T0RJC8u+apUo
Score8/10-
Registers COM server for autorun
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-