General
-
Target
0f91f661067a60ace2bacda62f194cde7dc29ab3de690146c763b06c20ef123a
-
Size
2.0MB
-
Sample
221127-hr918sca31
-
MD5
1389d8de3686df6ce4714b6147572a0a
-
SHA1
255f0df41f365f94d365184b0f3ef95c3ef69512
-
SHA256
0f91f661067a60ace2bacda62f194cde7dc29ab3de690146c763b06c20ef123a
-
SHA512
7c2bd7e6373dfa318b6650812cf7151f7a454768b5c77bacd63a8d024a788b84f52c4d17eb7dda6785042c78d9fa1faf584d53b352c30c63ae25c2b2aa556699
-
SSDEEP
49152:h1Os6NQToNVxbNrInKtDSwSm7CXH9e7B6cr7J30Ct40pTw:h1OvNQUNVxNpSmGXMvxdtE
Malware Config
Targets
-
-
Target
0f91f661067a60ace2bacda62f194cde7dc29ab3de690146c763b06c20ef123a
-
Size
2.0MB
-
MD5
1389d8de3686df6ce4714b6147572a0a
-
SHA1
255f0df41f365f94d365184b0f3ef95c3ef69512
-
SHA256
0f91f661067a60ace2bacda62f194cde7dc29ab3de690146c763b06c20ef123a
-
SHA512
7c2bd7e6373dfa318b6650812cf7151f7a454768b5c77bacd63a8d024a788b84f52c4d17eb7dda6785042c78d9fa1faf584d53b352c30c63ae25c2b2aa556699
-
SSDEEP
49152:h1Os6NQToNVxbNrInKtDSwSm7CXH9e7B6cr7J30Ct40pTw:h1OvNQUNVxNpSmGXMvxdtE
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-