General
-
Target
12ca573395abe2197dd8e264d780b988830337b1ba66723c2ced6a0ce51993ce
-
Size
367KB
-
Sample
211026-qe3qdshef5
-
MD5
810a82f75517c167b50617cd983ba22a
-
SHA1
a3c591f17077af53b6cc7ea0e935354ec7acd2b6
-
SHA256
12ca573395abe2197dd8e264d780b988830337b1ba66723c2ced6a0ce51993ce
-
SHA512
076f545324d840cc8e9d84f2d42c6893c42dfca61a572f912736c8cface7fb475db78488b3210457c1aa4b97d3e106b8db1285fa7dbeb9a1cbecf3157d7d2969
Static task
static1
Behavioral task
behavioral1
Sample
12ca573395abe2197dd8e264d780b988830337b1ba66723c2ced6a0ce51993ce.exe
Resource
win10-en-20210920
Malware Config
Extracted
oski
stanelectronics.xyz
Targets
-
-
Target
12ca573395abe2197dd8e264d780b988830337b1ba66723c2ced6a0ce51993ce
-
Size
367KB
-
MD5
810a82f75517c167b50617cd983ba22a
-
SHA1
a3c591f17077af53b6cc7ea0e935354ec7acd2b6
-
SHA256
12ca573395abe2197dd8e264d780b988830337b1ba66723c2ced6a0ce51993ce
-
SHA512
076f545324d840cc8e9d84f2d42c6893c42dfca61a572f912736c8cface7fb475db78488b3210457c1aa4b97d3e106b8db1285fa7dbeb9a1cbecf3157d7d2969
Score10/10-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-