General
-
Target
32c572cacf0d5760729326fa9d29f20b06a03cbac5f94e54f39464d0d5ef9072
-
Size
2.1MB
-
Sample
221127-hcf5lsah9y
-
MD5
83bbd13eea5a5b7eaf54d68560f772bc
-
SHA1
5d06bd1cfe59246760786931d6448988f76767cd
-
SHA256
32c572cacf0d5760729326fa9d29f20b06a03cbac5f94e54f39464d0d5ef9072
-
SHA512
3163edc94827d012e8d9106b87e2749b7d4adf9f36ad1a83f49fbfa8cc12714cbcf7ebda5f119fc03e2d5d6e9034684ff6a80c72131dc76ad6df14cec9a92a75
-
SSDEEP
49152:h1OsJNQToNVxbNrInKtDSwSm7CXH9e7RSlSAn5RjFdzgD20XrXTU:h1OINQUNVxNpSmGX9FdsD20Xs
Malware Config
Targets
-
-
Target
32c572cacf0d5760729326fa9d29f20b06a03cbac5f94e54f39464d0d5ef9072
-
Size
2.1MB
-
MD5
83bbd13eea5a5b7eaf54d68560f772bc
-
SHA1
5d06bd1cfe59246760786931d6448988f76767cd
-
SHA256
32c572cacf0d5760729326fa9d29f20b06a03cbac5f94e54f39464d0d5ef9072
-
SHA512
3163edc94827d012e8d9106b87e2749b7d4adf9f36ad1a83f49fbfa8cc12714cbcf7ebda5f119fc03e2d5d6e9034684ff6a80c72131dc76ad6df14cec9a92a75
-
SSDEEP
49152:h1OsJNQToNVxbNrInKtDSwSm7CXH9e7RSlSAn5RjFdzgD20XrXTU:h1OINQUNVxNpSmGX9FdsD20Xs
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-