General
-
Target
UpdaterBrowser.rar
-
Size
618KB
-
Sample
230129-x9hr2aba52
-
MD5
5f57b5dfb24c536ba42bbddb31519ce3
-
SHA1
0a423b441e7ce06fa7b74a2b5a624fc85dcbe5cb
-
SHA256
678b04e43b4aab0b7141c138ed9680dca7e1b7504719a038aa84fa3727dbef68
-
SHA512
43cc2c7b75d83568dac98200c972df5eac0b11baa810176f146fe5cd73f33e73e0f78171119ee42b0bb7f9d133ee8d7fb549582bc553d497fc624da155497534
-
SSDEEP
12288:2EqF1D+u+HH5AfP2ooR2AsCbMvDbxEA5ig8+4lP:cD+u+nSfP2ooRhsCbEAJtlP
Malware Config
Targets
-
-
Target
UpdaterBrowser.exe
-
Size
800.7MB
-
MD5
35618fa1abebf0c0e499715e1cace088
-
SHA1
f6aaa4580f3b76a92eee1a83ec66b7fe83c239eb
-
SHA256
da06c72d66cbe988ead2d750d67ea6921995daf014cfd5ce55041584aabdebeb
-
SHA512
17ace0cc534a62391cf5821f1f5a39aa8990e9c7d26409f049c3ae543d604ea580427ee4fcf6d6fc617e1d1888eef8fbed6aeedae55089609daf8e16e1c35a83
-
SSDEEP
24576:vX0VFSe+gENbjL/gg23f3l31cconBuOhjSXv:vX0VFSfNbjU
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-