General
-
Target
62c98014e876605a52f6f67ee3a49750754721c7dc33dc8bd1b43b226b3d5c04
-
Size
2.5MB
-
Sample
221127-2h8atshe4y
-
MD5
e1fe66f4fb2a64899b20a02e646d6349
-
SHA1
986bcf7238e71ecf6c6ae0b6be483cce3b3f010f
-
SHA256
62c98014e876605a52f6f67ee3a49750754721c7dc33dc8bd1b43b226b3d5c04
-
SHA512
0577c39013cc5fd637c8a8fcc4e50f5b75e160d9668400e8fce398f956b73a958357bce517f4e59e6b4d7ce4c611c3583ae52118c9dafaeaec05f7ae6e536b82
-
SSDEEP
49152:h1OsvxNHPhw+gUPu1hTyleJDaSZulHdZAYokFKJr3CJROH:h1OMD5EPhelwlCJ0H
Malware Config
Targets
-
-
Target
62c98014e876605a52f6f67ee3a49750754721c7dc33dc8bd1b43b226b3d5c04
-
Size
2.5MB
-
MD5
e1fe66f4fb2a64899b20a02e646d6349
-
SHA1
986bcf7238e71ecf6c6ae0b6be483cce3b3f010f
-
SHA256
62c98014e876605a52f6f67ee3a49750754721c7dc33dc8bd1b43b226b3d5c04
-
SHA512
0577c39013cc5fd637c8a8fcc4e50f5b75e160d9668400e8fce398f956b73a958357bce517f4e59e6b4d7ce4c611c3583ae52118c9dafaeaec05f7ae6e536b82
-
SSDEEP
49152:h1OsvxNHPhw+gUPu1hTyleJDaSZulHdZAYokFKJr3CJROH:h1OMD5EPhelwlCJ0H
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-