General
-
Target
vbc.exe.bin
-
Size
73KB
-
Sample
220727-f9d1eaafel
-
MD5
01d52c9116e69104be59982ec44b4f9a
-
SHA1
d6f901d3488a21e6856563c46d560518cb218549
-
SHA256
de3fc0f64c0ea18339e50d84f79e5e7f144f0e4b4ec725bb3cc48208a1491577
-
SHA512
a6731650991c837dfde3666bfeb2214b02c21aa810bca59244f84b5cd7a383b17695d4d6831f45eea6520f1d2b1faa16a74107487580533a2a1927c0569fa2cb
Malware Config
Targets
-
-
Target
vbc.exe.bin
-
Size
73KB
-
MD5
01d52c9116e69104be59982ec44b4f9a
-
SHA1
d6f901d3488a21e6856563c46d560518cb218549
-
SHA256
de3fc0f64c0ea18339e50d84f79e5e7f144f0e4b4ec725bb3cc48208a1491577
-
SHA512
a6731650991c837dfde3666bfeb2214b02c21aa810bca59244f84b5cd7a383b17695d4d6831f45eea6520f1d2b1faa16a74107487580533a2a1927c0569fa2cb
Score10/10-
BluStealer
A Modular information stealer written in Visual Basic.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Uses the VBS compiler for execution
-
Suspicious use of SetThreadContext
-