General
-
Target
4797ee9e16f1ad156857c4270a2e30720f52e38f30fe38f58fb82d6790898f47
-
Size
2.1MB
-
Sample
221125-y2pq2sfd3w
-
MD5
43990250b72a3b5341a5183000387f14
-
SHA1
efd6b663c24688e54ef470524d66d9c9788df75f
-
SHA256
4797ee9e16f1ad156857c4270a2e30720f52e38f30fe38f58fb82d6790898f47
-
SHA512
8b9ea87dddb3f2dcf343269ae372f6bafef25d8209204c066b917ecbacd6448b4ab0e4677b2ea908c42c13c2bd8f4ca2fe94d32b8f46333b0e9d68ade55661f9
-
SSDEEP
49152:h1OsANB2tcyUoc3slSeZrg1JclQ35sFDRh:h1Oj36Eoc3UK0bv
Malware Config
Targets
-
-
Target
4797ee9e16f1ad156857c4270a2e30720f52e38f30fe38f58fb82d6790898f47
-
Size
2.1MB
-
MD5
43990250b72a3b5341a5183000387f14
-
SHA1
efd6b663c24688e54ef470524d66d9c9788df75f
-
SHA256
4797ee9e16f1ad156857c4270a2e30720f52e38f30fe38f58fb82d6790898f47
-
SHA512
8b9ea87dddb3f2dcf343269ae372f6bafef25d8209204c066b917ecbacd6448b4ab0e4677b2ea908c42c13c2bd8f4ca2fe94d32b8f46333b0e9d68ade55661f9
-
SSDEEP
49152:h1OsANB2tcyUoc3slSeZrg1JclQ35sFDRh:h1Oj36Eoc3UK0bv
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-