General
-
Target
e1ed12cde6d3b9b52ca99b7824978ecf90dd15eb717162556f1397d3f9b17734
-
Size
260KB
-
Sample
220308-bbtwraaaf6
-
MD5
6959c253bf5fab6a54f7b9b9aeb58603
-
SHA1
7fdbf00332ed5882d774567356493fb0b369dce6
-
SHA256
e1ed12cde6d3b9b52ca99b7824978ecf90dd15eb717162556f1397d3f9b17734
-
SHA512
1b61d19314c979c551a94b490cee53c5e6d44c3d25aaab3a61ba5d99744ee440436b63798f6ebaeeecc47b38782a1c398c2aa9a58ae9f1d95a2fb7620ef05529
Malware Config
Targets
-
-
Target
e1ed12cde6d3b9b52ca99b7824978ecf90dd15eb717162556f1397d3f9b17734
-
Size
260KB
-
MD5
6959c253bf5fab6a54f7b9b9aeb58603
-
SHA1
7fdbf00332ed5882d774567356493fb0b369dce6
-
SHA256
e1ed12cde6d3b9b52ca99b7824978ecf90dd15eb717162556f1397d3f9b17734
-
SHA512
1b61d19314c979c551a94b490cee53c5e6d44c3d25aaab3a61ba5d99744ee440436b63798f6ebaeeecc47b38782a1c398c2aa9a58ae9f1d95a2fb7620ef05529
Score9/10-
NirSoft MailPassView
Password recovery tool for various email clients
-
Nirsoft
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses Microsoft Outlook accounts
-
Suspicious use of SetThreadContext
-