General
-
Target
14a82e2336f0d8f064eaef68352653dd291c179b562e4e3316c7d4dd0dbdf69e
-
Size
2.1MB
-
Sample
221127-hptlgagc27
-
MD5
a45c86d5a87d4faa5d2f2932633d8986
-
SHA1
cdc03c3802d6cab20afd1b364623a9ef64a6f257
-
SHA256
14a82e2336f0d8f064eaef68352653dd291c179b562e4e3316c7d4dd0dbdf69e
-
SHA512
28edb77a28e1ed8965053078a6e555f67dd1b0a363616c9fddc7209c671e9cfd4883de94bd5f9f0fe077283047dc5797aa3989c63ab06e76533102aec515c37d
-
SSDEEP
49152:h1Os2NQToNVxbNrInKtDSwSm7CXH9e7RSlSAn5RjFdzgD20XrXTy:h1OhNQUNVxNpSmGX9FdsD20X6
Malware Config
Targets
-
-
Target
14a82e2336f0d8f064eaef68352653dd291c179b562e4e3316c7d4dd0dbdf69e
-
Size
2.1MB
-
MD5
a45c86d5a87d4faa5d2f2932633d8986
-
SHA1
cdc03c3802d6cab20afd1b364623a9ef64a6f257
-
SHA256
14a82e2336f0d8f064eaef68352653dd291c179b562e4e3316c7d4dd0dbdf69e
-
SHA512
28edb77a28e1ed8965053078a6e555f67dd1b0a363616c9fddc7209c671e9cfd4883de94bd5f9f0fe077283047dc5797aa3989c63ab06e76533102aec515c37d
-
SSDEEP
49152:h1Os2NQToNVxbNrInKtDSwSm7CXH9e7RSlSAn5RjFdzgD20XrXTy:h1OhNQUNVxNpSmGX9FdsD20X6
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-