General
-
Target
e6fc18c3c39cf827c3f8776c82852445c07539900a52b192e1c15431c0c8311d
-
Size
2.1MB
-
Sample
221125-qr9z8sbc22
-
MD5
e8c7ec620fe6c681d4c37f054b4ed898
-
SHA1
87068e1017c78b3c730660181bc84ec3fe440b3f
-
SHA256
e6fc18c3c39cf827c3f8776c82852445c07539900a52b192e1c15431c0c8311d
-
SHA512
140d6551ca80f70ba746a67a70155c50997b1737e8db80cd44fe31d471716cfcf3eff04eb23542906a391a52dd732da841d82a9b53965dbf4e485ff6f255e328
-
SSDEEP
24576:h1OYdaOHidvpcWU0nkjpTu1aiwB+JtP2ItjRwcOHx0pFz8rrqbk8250uj5rc6bJR:h1OsM5/nkFTZaPPRwTR0ptyI2q8jbJG0
Malware Config
Targets
-
-
Target
e6fc18c3c39cf827c3f8776c82852445c07539900a52b192e1c15431c0c8311d
-
Size
2.1MB
-
MD5
e8c7ec620fe6c681d4c37f054b4ed898
-
SHA1
87068e1017c78b3c730660181bc84ec3fe440b3f
-
SHA256
e6fc18c3c39cf827c3f8776c82852445c07539900a52b192e1c15431c0c8311d
-
SHA512
140d6551ca80f70ba746a67a70155c50997b1737e8db80cd44fe31d471716cfcf3eff04eb23542906a391a52dd732da841d82a9b53965dbf4e485ff6f255e328
-
SSDEEP
24576:h1OYdaOHidvpcWU0nkjpTu1aiwB+JtP2ItjRwcOHx0pFz8rrqbk8250uj5rc6bJR:h1OsM5/nkFTZaPPRwTR0ptyI2q8jbJG0
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-