General
-
Target
0cc4e98207d123a797a35dbde6b32f5a
-
Size
249KB
-
Sample
231225-hl7nxsgecj
-
MD5
0cc4e98207d123a797a35dbde6b32f5a
-
SHA1
db550a355706db73fd6e38516f910e8d1822ebde
-
SHA256
3a6f1b561f54f1eda090bd02f5a3aaef3e974aeca9a6b68a648c20d7c9a1a2e6
-
SHA512
66345ec46bc9580ff027da2090792f7e79977c46d7c7fa391d003401d62dc16947375000a0cdfb8f133bb2c825cf01eaeae77b8e4d369be60a181bbab8fe6b76
-
SSDEEP
6144:h1OgDPdkBAFZWjadD4s5Esu7odmT6cAoUQ1i:h1OgLdaOM7+mT67FQk
Malware Config
Targets
-
-
Target
0cc4e98207d123a797a35dbde6b32f5a
-
Size
249KB
-
MD5
0cc4e98207d123a797a35dbde6b32f5a
-
SHA1
db550a355706db73fd6e38516f910e8d1822ebde
-
SHA256
3a6f1b561f54f1eda090bd02f5a3aaef3e974aeca9a6b68a648c20d7c9a1a2e6
-
SHA512
66345ec46bc9580ff027da2090792f7e79977c46d7c7fa391d003401d62dc16947375000a0cdfb8f133bb2c825cf01eaeae77b8e4d369be60a181bbab8fe6b76
-
SSDEEP
6144:h1OgDPdkBAFZWjadD4s5Esu7odmT6cAoUQ1i:h1OgLdaOM7+mT67FQk
Score7/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-