General
-
Target
eab926a9c9e80e6a4163f0a1e2f6e9c7bd269da25381d449a1cf5ae386f3d2ea
-
Size
2.0MB
-
Sample
221127-ezzzfshf66
-
MD5
ea3bddbe23f2f9a58da5f2445759d466
-
SHA1
69c1816c8883fdd28448a9f55c884dcaa5f317f4
-
SHA256
eab926a9c9e80e6a4163f0a1e2f6e9c7bd269da25381d449a1cf5ae386f3d2ea
-
SHA512
5be5ba67c045363774cb6eb1c1b3f535d50cb855ccacf91226926f76adf87320affb64ed9bdb30fbccfe9590a196d59431c9795ba0f9bacea61869268130a7fc
-
SSDEEP
49152:h1OsfNQToNVxbNrInKtDSwSm7CXH9e7B6cr7J30Ct40pTa:h1OWNQUNVxNpSmGXMvxdtW
Malware Config
Targets
-
-
Target
eab926a9c9e80e6a4163f0a1e2f6e9c7bd269da25381d449a1cf5ae386f3d2ea
-
Size
2.0MB
-
MD5
ea3bddbe23f2f9a58da5f2445759d466
-
SHA1
69c1816c8883fdd28448a9f55c884dcaa5f317f4
-
SHA256
eab926a9c9e80e6a4163f0a1e2f6e9c7bd269da25381d449a1cf5ae386f3d2ea
-
SHA512
5be5ba67c045363774cb6eb1c1b3f535d50cb855ccacf91226926f76adf87320affb64ed9bdb30fbccfe9590a196d59431c9795ba0f9bacea61869268130a7fc
-
SSDEEP
49152:h1OsfNQToNVxbNrInKtDSwSm7CXH9e7B6cr7J30Ct40pTa:h1OWNQUNVxNpSmGXMvxdtW
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-