Resubmissions
10-07-2020 07:16
200710-3ftd7gk4t6 8General
-
Target
PacketTracer-7.3.0-win64-setup.exe
-
Size
146.9MB
-
Sample
200710-3ftd7gk4t6
-
MD5
9a5fffcd7fa373a0ee94fdc490664e83
-
SHA1
1edae57082ac9aad5062be08030a376b5e2b545a
-
SHA256
6ded73b437e967c9ff6508c0fa853f45abd7fe97f430d53a139834c9a9ebb778
-
SHA512
7f26fa07880f57cad2877bc1a2413e8afe75a14855d38d42926f930cc91c8d426aec8886d30dd9c74c900f7ea35aebdccbb8372d2b013056fd2388166bc2427b
Malware Config
Targets
-
-
Target
PacketTracer-7.3.0-win64-setup.exe
-
Size
146.9MB
-
MD5
9a5fffcd7fa373a0ee94fdc490664e83
-
SHA1
1edae57082ac9aad5062be08030a376b5e2b545a
-
SHA256
6ded73b437e967c9ff6508c0fa853f45abd7fe97f430d53a139834c9a9ebb778
-
SHA512
7f26fa07880f57cad2877bc1a2413e8afe75a14855d38d42926f930cc91c8d426aec8886d30dd9c74c900f7ea35aebdccbb8372d2b013056fd2388166bc2427b
Score8/10-
Executes dropped EXE
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Modifies system certificate store
-