General
-
Target
679721af17e414c8442ba29477fd672adbd6407f96eb0808735406ebe7fe3d9d
-
Size
710KB
-
Sample
221020-kmvf4aebb8
-
MD5
7b22c13d805e629eb2099cd29bf25b70
-
SHA1
1915ef41d3d93ce7bb7a5f24b813974385d03e90
-
SHA256
679721af17e414c8442ba29477fd672adbd6407f96eb0808735406ebe7fe3d9d
-
SHA512
4fd0c97788dbbc119a0eaf29cd4c2aefdd42e8d189509e2765c6c9de94db63a334ff2c15702424e82bae9aa180ad690c0f2e804ee524bc0e2ba20d91b6af8bf4
-
SSDEEP
12288:yopfsNd0jbsZ+Uou1jejoUViYMnyz73cxOXLy+u5RLrCeIMCdwOUOH0jn:V1sNd0jg+jcjejdKWjb85RXCejRO+
Malware Config
Targets
-
-
Target
679721af17e414c8442ba29477fd672adbd6407f96eb0808735406ebe7fe3d9d
-
Size
710KB
-
MD5
7b22c13d805e629eb2099cd29bf25b70
-
SHA1
1915ef41d3d93ce7bb7a5f24b813974385d03e90
-
SHA256
679721af17e414c8442ba29477fd672adbd6407f96eb0808735406ebe7fe3d9d
-
SHA512
4fd0c97788dbbc119a0eaf29cd4c2aefdd42e8d189509e2765c6c9de94db63a334ff2c15702424e82bae9aa180ad690c0f2e804ee524bc0e2ba20d91b6af8bf4
-
SSDEEP
12288:yopfsNd0jbsZ+Uou1jejoUViYMnyz73cxOXLy+u5RLrCeIMCdwOUOH0jn:V1sNd0jg+jcjejdKWjb85RXCejRO+
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-