General
-
Target
ee8ec71a488cd06f09e1a1ada0637709
-
Size
3.5MB
-
Sample
210618-ae4lnekve6
-
MD5
ee8ec71a488cd06f09e1a1ada0637709
-
SHA1
8d1868ea322f936b848054297739bc4eebcfd961
-
SHA256
79e0a26bc2c9c902744c618ad7af045e5b1ced50f98ca066a33df44218f84702
-
SHA512
6c99c713997b5278af673edcc12f02ea0e72ee2acabd6fa7b7114fea2e3807c93e94a98441c9527856824696a063f1036f40eef217e11a52832d47f09837e6c5
Malware Config
Targets
-
-
Target
ee8ec71a488cd06f09e1a1ada0637709
-
Size
3.5MB
-
MD5
ee8ec71a488cd06f09e1a1ada0637709
-
SHA1
8d1868ea322f936b848054297739bc4eebcfd961
-
SHA256
79e0a26bc2c9c902744c618ad7af045e5b1ced50f98ca066a33df44218f84702
-
SHA512
6c99c713997b5278af673edcc12f02ea0e72ee2acabd6fa7b7114fea2e3807c93e94a98441c9527856824696a063f1036f40eef217e11a52832d47f09837e6c5
Score10/10-
PandaStealer
Panda Stealer is a fork of CollectorProject Stealer written in C++.
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-