General
-
Target
793ea2a08d9157ccb324c85338e8b9ee89bf437bb136e85a8863a5939c111a22
-
Size
457KB
-
Sample
240925-m9kara1hqq
-
MD5
642960a7b3784635043382626d45f4c8
-
SHA1
dc16a13ba73b6ae191c474c44f583d2dba496ced
-
SHA256
793ea2a08d9157ccb324c85338e8b9ee89bf437bb136e85a8863a5939c111a22
-
SHA512
76ccfdadb23e0ddf40e25adfc65ac28af65ca4b61dad33fdcd282af60e7f837b3a9588d0654ce035c272e049d0ca8701636549f8bac7e52e08c58a0ba2f446de
-
SSDEEP
6144:0UyYm4VF0Q5SXwezsu4rhRSSVzQtXFiZpQyWbKJXrhfBIrsp3+mpMbmFZTYq6NtZ:0uVdgwQs70UeyW+J7rsXmn03B
Malware Config
Targets
-
-
Target
ChromersUpdaters.exe
-
Size
1.1MB
-
MD5
a95a6d9baec0c17aad927a7b0aa8a6bf
-
SHA1
fb79bbbef3cfef27abde43b9d2c1b988b4959c24
-
SHA256
6e9b598fba7067c39f1ec3b8e6ecdf7053fffb653e29daf2aa92d46b69454f9c
-
SHA512
53c607bbd9d43f1bc34963c44d38775142c0546ae11a84dcc5a4252db0f4ca053cd0675243b768a957d93d988c352cc15a97530b87513b457ad868d14155f239
-
SSDEEP
24576:7xJbrT7/N7ASkzX0yW97fl48VOkbnYhInKEqIGCn:LbrT7/SSkzX0vp48VOWuInbqT
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-