General
-
Target
svhost1.exe
-
Size
2.8MB
-
Sample
200509-595bvj1qy6
-
MD5
0527539f8c9af38ea8c36e9d2be595cd
-
SHA1
a9d38a3b10c1d3dbf5eb00024303877e3c84cdab
-
SHA256
247ddce4c369810b27385acb97298a107ac440b70d23f047e20224dd6e68e536
-
SHA512
00e01f1668c09f98643312e15044a8dc4ef38b72bb08106bd967af6f130ebaca8899e3bf22b143db49a0daf42db690b8890d10e3455804e817647e6f977242c4
Static task
static1
Behavioral task
behavioral1
Sample
svhost1.exe
Resource
win7v200430
Behavioral task
behavioral2
Sample
svhost1.exe
Resource
win10v200430
Malware Config
Targets
-
-
Target
svhost1.exe
-
Size
2.8MB
-
MD5
0527539f8c9af38ea8c36e9d2be595cd
-
SHA1
a9d38a3b10c1d3dbf5eb00024303877e3c84cdab
-
SHA256
247ddce4c369810b27385acb97298a107ac440b70d23f047e20224dd6e68e536
-
SHA512
00e01f1668c09f98643312e15044a8dc4ef38b72bb08106bd967af6f130ebaca8899e3bf22b143db49a0daf42db690b8890d10e3455804e817647e6f977242c4
Score9/10-
Modifies boot configuration data using bcdedit
-
Sets file execution options in registry
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Drops desktop.ini file(s)
-
Modifies service
-