General
-
Target
2283ad65576252b5a4f007cffb8e5d24
-
Size
1.6MB
-
Sample
220224-hxm4naddhj
-
MD5
2283ad65576252b5a4f007cffb8e5d24
-
SHA1
b5e19334955cd572e8535063a7bd38dd6561d957
-
SHA256
60e6e0f067230326553fef06a25719c538bc8bd9c9a2de543adc3d846e121672
-
SHA512
99a837a916feca345bb1a0e103408df782dbaafc99377f6f5e0b720b0689da12d4b674dc79ee3afc19db406bc67691ee39c3d842101a2b061b874456d2e5582a
Malware Config
Extracted
cryptbot
brikwl42.top
Targets
-
-
Target
2283ad65576252b5a4f007cffb8e5d24
-
Size
1.6MB
-
MD5
2283ad65576252b5a4f007cffb8e5d24
-
SHA1
b5e19334955cd572e8535063a7bd38dd6561d957
-
SHA256
60e6e0f067230326553fef06a25719c538bc8bd9c9a2de543adc3d846e121672
-
SHA512
99a837a916feca345bb1a0e103408df782dbaafc99377f6f5e0b720b0689da12d4b674dc79ee3afc19db406bc67691ee39c3d842101a2b061b874456d2e5582a
Score10/10-
CryptBot
A C++ stealer distributed widely in bundle with other software.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-