General
-
Target
9e74f2ecd527dc268c0b286e8a6f48d2e39db3f08cc289cf5b87fd699b9c59be
-
Size
597KB
-
Sample
201109-2v9n848qt6
-
MD5
c94bf8324e8f043dbb1282bb905f2acf
-
SHA1
2210d4bb4dfcb09d63819e78e868bb1f4162bed8
-
SHA256
9e74f2ecd527dc268c0b286e8a6f48d2e39db3f08cc289cf5b87fd699b9c59be
-
SHA512
e4a482030198a80fedf81fda6e94e1532ae07771bd4bdbcfc933322860dbdf059c743fa0301a1b7a7e80001f529ccfc1ea67a241488219725118958459f07708
Static task
static1
Behavioral task
behavioral1
Sample
9e74f2ecd527dc268c0b286e8a6f48d2e39db3f08cc289cf5b87fd699b9c59be.exe
Resource
win7v20201028
Malware Config
Targets
-
-
Target
9e74f2ecd527dc268c0b286e8a6f48d2e39db3f08cc289cf5b87fd699b9c59be
-
Size
597KB
-
MD5
c94bf8324e8f043dbb1282bb905f2acf
-
SHA1
2210d4bb4dfcb09d63819e78e868bb1f4162bed8
-
SHA256
9e74f2ecd527dc268c0b286e8a6f48d2e39db3f08cc289cf5b87fd699b9c59be
-
SHA512
e4a482030198a80fedf81fda6e94e1532ae07771bd4bdbcfc933322860dbdf059c743fa0301a1b7a7e80001f529ccfc1ea67a241488219725118958459f07708
-
Reads user/profile data of local email clients
Email clients store some user data on disk where infostealers will often target it.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-