General
-
Target
2b8db0068c3b7f15012654150d2a0fea.exe
-
Size
600KB
-
Sample
210421-r9aepa6rbe
-
MD5
2b8db0068c3b7f15012654150d2a0fea
-
SHA1
e79fe9cdc5754831a5f34b096df8b1ac931158af
-
SHA256
80db38790bd11e63e5afa0b1ac9ab98d178919ddcf770d3da7d461d083f9891e
-
SHA512
b1e51bc610c2713b3864672615919a50f1fd780ec62295e8724cd468cca83d252e46e3c055debf07db4c1c681b51260a7aadb9b36aaded2512c2f6634d7482f4
Static task
static1
Behavioral task
behavioral1
Sample
2b8db0068c3b7f15012654150d2a0fea.exe
Resource
win7v20210410
Malware Config
Targets
-
-
Target
2b8db0068c3b7f15012654150d2a0fea.exe
-
Size
600KB
-
MD5
2b8db0068c3b7f15012654150d2a0fea
-
SHA1
e79fe9cdc5754831a5f34b096df8b1ac931158af
-
SHA256
80db38790bd11e63e5afa0b1ac9ab98d178919ddcf770d3da7d461d083f9891e
-
SHA512
b1e51bc610c2713b3864672615919a50f1fd780ec62295e8724cd468cca83d252e46e3c055debf07db4c1c681b51260a7aadb9b36aaded2512c2f6634d7482f4
-
Downloads MZ/PE file
-
Deletes itself
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-