General
-
Target
66de6dee1e7ef4031133da2b7444de31ae7c1be3d04e06a2558214880f4e13b2
-
Size
603KB
-
Sample
221020-yxsxxacfhq
-
MD5
90353b4bbaeadb6e44254a8f02f40830
-
SHA1
968ae19899dfb3a232e77d837fda2f7eba76d93d
-
SHA256
66de6dee1e7ef4031133da2b7444de31ae7c1be3d04e06a2558214880f4e13b2
-
SHA512
2b45fac23091fbcd1c67bc647ad1b7e4d60dc61ec85c0dc520abc0d891b0b5f8f5a450ccc65a4c2a117d729269abf37e96ec2fa85622a3f871a5b5fe21783ddb
-
SSDEEP
12288:fnnGq1fSnwY6EvXJgK8vLHfutR4SUrb8d5iu7mCE7y6:vhf1Y9vZNw/uj46d5hKp7y6
Malware Config
Targets
-
-
Target
66de6dee1e7ef4031133da2b7444de31ae7c1be3d04e06a2558214880f4e13b2
-
Size
603KB
-
MD5
90353b4bbaeadb6e44254a8f02f40830
-
SHA1
968ae19899dfb3a232e77d837fda2f7eba76d93d
-
SHA256
66de6dee1e7ef4031133da2b7444de31ae7c1be3d04e06a2558214880f4e13b2
-
SHA512
2b45fac23091fbcd1c67bc647ad1b7e4d60dc61ec85c0dc520abc0d891b0b5f8f5a450ccc65a4c2a117d729269abf37e96ec2fa85622a3f871a5b5fe21783ddb
-
SSDEEP
12288:fnnGq1fSnwY6EvXJgK8vLHfutR4SUrb8d5iu7mCE7y6:vhf1Y9vZNw/uj46d5hKp7y6
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-