General
-
Target
MFC PROJECT DETAILS.exe
-
Size
406KB
-
Sample
200630-bfjep8vhg6
-
MD5
0f594997983db981f447a2ee5d640129
-
SHA1
bf31d7905e28e9ab32348471bb7a497d82c6aff7
-
SHA256
f4ca965db7cfd5944b5d6902f391f91f7c3994973955f2af97a91ec146977cc4
-
SHA512
0ee59d76aaee737b67336c5fd142e7f175ac5dbfce33052fd2ae7ea39dae2279d9363f660529caf26ec899a81331c48a6d873b26f09376b0cdea7bfb94902f58
Static task
static1
Behavioral task
behavioral1
Sample
MFC PROJECT DETAILS.exe
Resource
win7v200430
Behavioral task
behavioral2
Sample
MFC PROJECT DETAILS.exe
Resource
win10
Malware Config
Targets
-
-
Target
MFC PROJECT DETAILS.exe
-
Size
406KB
-
MD5
0f594997983db981f447a2ee5d640129
-
SHA1
bf31d7905e28e9ab32348471bb7a497d82c6aff7
-
SHA256
f4ca965db7cfd5944b5d6902f391f91f7c3994973955f2af97a91ec146977cc4
-
SHA512
0ee59d76aaee737b67336c5fd142e7f175ac5dbfce33052fd2ae7ea39dae2279d9363f660529caf26ec899a81331c48a6d873b26f09376b0cdea7bfb94902f58
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run entry to start application
-
Suspicious use of SetThreadContext
-