Extracted

• • Target

    adjunto_de_oferta_urgente.exe

  • Size

    526KB

  • MD5

    23798a2edeaecc48c23cc335f1aa6b25

  • SHA1

    edf7a988932195cedede2dfc9453cc66f80eeb9e

  • SHA256

    28bd99a29c58149c6c11e034cbd34ce18c42ffbe66cb00e9e8e67ca3fa04ec05

  • SHA512

    1ff315fe16c3664284d237acccbeabdc44bb511a2165c34fc50e0d7b20e362dc69dd960f2be4b8e3bcf84484ee0f71c057764b999a7ba61c5482ef6c18cda5fb

  Score

  10^/10

  spyware

  • Reads data files stored by FTP clients

    Tries to access configuration files associated with programs like FileZilla.

    spyware

  • Reads user/profile data of local email clients

    Email clients store some user data on disk where infostealers will often target it.

    spyware

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spyware

  • Suspicious use of SetThreadContext

  behavioral1behavioral2