General
-
Target
959727c05f54b7ccf3cb751ae7d781c8.exe
-
Size
633KB
-
Sample
210507-kwbcvmx1ej
-
MD5
959727c05f54b7ccf3cb751ae7d781c8
-
SHA1
f3e8dd16886e12b8e667e6d8a11d59b7a2e169b8
-
SHA256
575ea0ea6808067f46ee7e5026fd5832997e28a9cef3cc1d6227ec5742ead3ba
-
SHA512
2b397cafd1e9f36def6aea02070808e8906609d088d0265c93be9fc9f18217e5689c19579508076f0971785a1dffb56233f93aa383561b4767d4a7a515d61204
Static task
static1
Behavioral task
behavioral1
Sample
959727c05f54b7ccf3cb751ae7d781c8.exe
Resource
win7v20210410
Malware Config
Targets
-
-
Target
959727c05f54b7ccf3cb751ae7d781c8.exe
-
Size
633KB
-
MD5
959727c05f54b7ccf3cb751ae7d781c8
-
SHA1
f3e8dd16886e12b8e667e6d8a11d59b7a2e169b8
-
SHA256
575ea0ea6808067f46ee7e5026fd5832997e28a9cef3cc1d6227ec5742ead3ba
-
SHA512
2b397cafd1e9f36def6aea02070808e8906609d088d0265c93be9fc9f18217e5689c19579508076f0971785a1dffb56233f93aa383561b4767d4a7a515d61204
-
Downloads MZ/PE file
-
Deletes itself
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-