General
-
Target
6621457478b4753e51231f346a867d701f5b3b7687cbd52c95756616855e2294
-
Size
903KB
-
Sample
221029-ne7m8sdfg4
-
MD5
c7b392ec2cc071dd681f4557237635c1
-
SHA1
6349c3b9520fbdfd819c5f8ab92872a48af30326
-
SHA256
6621457478b4753e51231f346a867d701f5b3b7687cbd52c95756616855e2294
-
SHA512
2aa847d39755d6288591c7732a17bf35302317aa26d63242073a098f9fdb10d275206d72d8cfa8ce071c9beb527b6ddd4c2ff86751d74468b4d412ffd693dae7
-
SSDEEP
12288:yyDjlA0FyP9s9GSN5MhRIi1Gll4Y+dnuvlhnDbV:yOVFyFhSH0Jduv7nPV
Malware Config
Targets
-
-
Target
6621457478b4753e51231f346a867d701f5b3b7687cbd52c95756616855e2294
-
Size
903KB
-
MD5
c7b392ec2cc071dd681f4557237635c1
-
SHA1
6349c3b9520fbdfd819c5f8ab92872a48af30326
-
SHA256
6621457478b4753e51231f346a867d701f5b3b7687cbd52c95756616855e2294
-
SHA512
2aa847d39755d6288591c7732a17bf35302317aa26d63242073a098f9fdb10d275206d72d8cfa8ce071c9beb527b6ddd4c2ff86751d74468b4d412ffd693dae7
-
SSDEEP
12288:yyDjlA0FyP9s9GSN5MhRIi1Gll4Y+dnuvlhnDbV:yOVFyFhSH0Jduv7nPV
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-