General
-
Target
securefile.exe
-
Size
672KB
-
Sample
201023-vzs73vn832
-
MD5
2840288c34a6fe8b9ff0dddc96c8f319
-
SHA1
603427314dd2c13f3ee19571f892675ce65843d5
-
SHA256
a88f94d1c96b0224ac11dd7bcc922173877b9f6a9442b083c3fdca3d40dd1c65
-
SHA512
ed463b6656176db4b51814f8be0b9ed6491c35b5714e5a122aa7d908f8a0b2f05ca5f7e29a36b8c473a0346cd85cdefcad60d6d866f709567e4387831d547af9
Static task
static1
Behavioral task
behavioral1
Sample
securefile.exe
Resource
win7
Behavioral task
behavioral2
Sample
securefile.exe
Resource
win10
Malware Config
Targets
-
-
Target
securefile.exe
-
Size
672KB
-
MD5
2840288c34a6fe8b9ff0dddc96c8f319
-
SHA1
603427314dd2c13f3ee19571f892675ce65843d5
-
SHA256
a88f94d1c96b0224ac11dd7bcc922173877b9f6a9442b083c3fdca3d40dd1c65
-
SHA512
ed463b6656176db4b51814f8be0b9ed6491c35b5714e5a122aa7d908f8a0b2f05ca5f7e29a36b8c473a0346cd85cdefcad60d6d866f709567e4387831d547af9
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of SetThreadContext
-