General
-
Target
4ca390de06bcd3e31777d93f8bae702f
-
Size
250KB
-
Sample
231226-cw118sghhq
-
MD5
4ca390de06bcd3e31777d93f8bae702f
-
SHA1
6b636e13c81d03b4ec38b7a5ab30528e668e1ba2
-
SHA256
13e4dd3612dba8233cfc38dee7bcb5058eb10c7c0c29e18fb37eabf1c048f7bd
-
SHA512
66a22437618a203b3300e54105dc069b77b7538bcdad097aea6f3bdd05d28f575dc2bff78f7f72ec62783fda2c6037edf2d76c80b2a0baf94869256adef73423
-
SSDEEP
3072:hn1/uEAgDPdkBlyFZ+ScjaiKWbETBquAEXlqsUUgtzdBwLAjcbLwvTTC1Blo8DhC:h1OgDPdkBAFZWjadD4s5g7WLyAYqEETO
Malware Config
Targets
-
-
Target
4ca390de06bcd3e31777d93f8bae702f
-
Size
250KB
-
MD5
4ca390de06bcd3e31777d93f8bae702f
-
SHA1
6b636e13c81d03b4ec38b7a5ab30528e668e1ba2
-
SHA256
13e4dd3612dba8233cfc38dee7bcb5058eb10c7c0c29e18fb37eabf1c048f7bd
-
SHA512
66a22437618a203b3300e54105dc069b77b7538bcdad097aea6f3bdd05d28f575dc2bff78f7f72ec62783fda2c6037edf2d76c80b2a0baf94869256adef73423
-
SSDEEP
3072:hn1/uEAgDPdkBlyFZ+ScjaiKWbETBquAEXlqsUUgtzdBwLAjcbLwvTTC1Blo8DhC:h1OgDPdkBAFZWjadD4s5g7WLyAYqEETO
Score7/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-