General
-
Target
Trf 00983764.exe
-
Size
375KB
-
Sample
211022-xcw86acac3
-
MD5
ab031839b4f841c3b709fdeb2f8d2889
-
SHA1
6c9e7d0f2a212fda955802586713d8996ff5d11d
-
SHA256
65d44c4290e2bab8287d1a51f22a5ce6b72e989126975bd9e99692a693008b0f
-
SHA512
0c4cb8190b9bce977b3df9cc12b725967cd68e8bb689c587306496bb835216174f838785f45720f7721c7be3f55abaf552dd310c0bd9dd352a8143826d3f7755
Static task
static1
Behavioral task
behavioral1
Sample
Trf 00983764.exe
Resource
win7-en-20211014
Behavioral task
behavioral2
Sample
Trf 00983764.exe
Resource
win10-en-20210920
Malware Config
Extracted
oski
vegas1e.xyz
Targets
-
-
Target
Trf 00983764.exe
-
Size
375KB
-
MD5
ab031839b4f841c3b709fdeb2f8d2889
-
SHA1
6c9e7d0f2a212fda955802586713d8996ff5d11d
-
SHA256
65d44c4290e2bab8287d1a51f22a5ce6b72e989126975bd9e99692a693008b0f
-
SHA512
0c4cb8190b9bce977b3df9cc12b725967cd68e8bb689c587306496bb835216174f838785f45720f7721c7be3f55abaf552dd310c0bd9dd352a8143826d3f7755
Score10/10-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-