General
-
Target
1eb486bd7970a4d3a074e029cbe3f206e474da99288d7bc131e87b059e76e051
-
Size
1.1MB
-
Sample
221029-mavbnscgdp
-
MD5
a57d56eb954892cc3d0b6fa9ff861872
-
SHA1
7f7813072d9807128cc563d22eee1863b82fa170
-
SHA256
1eb486bd7970a4d3a074e029cbe3f206e474da99288d7bc131e87b059e76e051
-
SHA512
8a58bda23c0993a485091504eea1c8b8f95324e1cbb7db9ff384fa21a004bd11038a2f4f52c84e4772bea6d443e3786a389db5daba0ab0313d54eeec1dc37b04
-
SSDEEP
24576:EqM/183ffiGJxCvrJGz5gE4qJUJ279tclhFYUpx6yP2LAMg4iaDKKDB:EqMW3XdsYz2RqYlIm8y+rPDh
Malware Config
Targets
-
-
Target
1eb486bd7970a4d3a074e029cbe3f206e474da99288d7bc131e87b059e76e051
-
Size
1.1MB
-
MD5
a57d56eb954892cc3d0b6fa9ff861872
-
SHA1
7f7813072d9807128cc563d22eee1863b82fa170
-
SHA256
1eb486bd7970a4d3a074e029cbe3f206e474da99288d7bc131e87b059e76e051
-
SHA512
8a58bda23c0993a485091504eea1c8b8f95324e1cbb7db9ff384fa21a004bd11038a2f4f52c84e4772bea6d443e3786a389db5daba0ab0313d54eeec1dc37b04
-
SSDEEP
24576:EqM/183ffiGJxCvrJGz5gE4qJUJ279tclhFYUpx6yP2LAMg4iaDKKDB:EqMW3XdsYz2RqYlIm8y+rPDh
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-