General
-
Target
29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b
-
Size
579KB
-
Sample
221106-ld1gesfhhm
-
MD5
af12af0b9c1796748217ea386dd661f0
-
SHA1
7f2f42fa67e004f4a7ff293d01809801224149ab
-
SHA256
29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b
-
SHA512
a0d9fd086dc2461ebee6e55bf8ba6b197b8939f498c98e299469ac27d83eda9b31eb7b5ecc1cd76ac5d01059fe2c162338b8238bad7e47ae7c17ea01678aae9f
-
SSDEEP
12288:hct/gm/+YBU58MaZhLduCbH/zuGEFpEEShc:hct/p9U5bajAqSBrEECc
Malware Config
Targets
-
-
Target
29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b
-
Size
579KB
-
MD5
af12af0b9c1796748217ea386dd661f0
-
SHA1
7f2f42fa67e004f4a7ff293d01809801224149ab
-
SHA256
29593b00d943488d2671e66fcffc9b25147b857a129564ba8a6e74342f10b40b
-
SHA512
a0d9fd086dc2461ebee6e55bf8ba6b197b8939f498c98e299469ac27d83eda9b31eb7b5ecc1cd76ac5d01059fe2c162338b8238bad7e47ae7c17ea01678aae9f
-
SSDEEP
12288:hct/gm/+YBU58MaZhLduCbH/zuGEFpEEShc:hct/p9U5bajAqSBrEECc
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-