General
-
Target
Shipment Number -Â 6183111.exe
-
Size
367KB
-
Sample
200711-szcfmjxyrs
-
MD5
4edc409cff67d97a3c7d27f608f01946
-
SHA1
b12d5bb5a2a0b6605e1ab1321dff0d096c8cc2a8
-
SHA256
62c097a914ab8991bde3355d8ab837c3d3e0421b67f7768b5ad1ec70226b7208
-
SHA512
02731cd61f3b06b02ddd5f3f80d2f37939bc05acd7156fc557701bc91a97ba463abe51ba99d08a3360e685ba38e0c16ae8ceda44c8fabf3944826c1208d6d9e2
Static task
static1
Behavioral task
behavioral1
Sample
Shipment Number -Â 6183111.exe
Resource
win7
Behavioral task
behavioral2
Sample
Shipment Number -Â 6183111.exe
Resource
win10v200430
Malware Config
Targets
-
-
Target
Shipment Number -Â 6183111.exe
-
Size
367KB
-
MD5
4edc409cff67d97a3c7d27f608f01946
-
SHA1
b12d5bb5a2a0b6605e1ab1321dff0d096c8cc2a8
-
SHA256
62c097a914ab8991bde3355d8ab837c3d3e0421b67f7768b5ad1ec70226b7208
-
SHA512
02731cd61f3b06b02ddd5f3f80d2f37939bc05acd7156fc557701bc91a97ba463abe51ba99d08a3360e685ba38e0c16ae8ceda44c8fabf3944826c1208d6d9e2
Score7/10-
Reads user/profile data of local email clients
Email clients store some user data on disk where infostealers will often target it.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetThreadContext
-