General
-
Target
cc6c1d144036f9d096355e5fdc166526ecbc09bf4a2491daac8c0c487b7d0c7d
-
Size
742KB
-
Sample
221106-mf4gjahgcn
-
MD5
3f06d54f357a36e708f2b656db7d0bc0
-
SHA1
663a783e5b044da3e36b10e87c0321c2227fcd97
-
SHA256
cc6c1d144036f9d096355e5fdc166526ecbc09bf4a2491daac8c0c487b7d0c7d
-
SHA512
c458a431abf91c2e6e3dc0688ada5db78b7dea4d244576d29301f28bac6f0ed27fb9d332e3467ba850315ee6d8e33d3357a4f33ee126881719ab805a657196b1
-
SSDEEP
12288:ebkRGfwjxXPYmAqFHLPitab4yd9QtUdo53VReoulCHU8rXfwpsKHF8ca40:rRdY2rPitabPIWduSCHUyX4Vl8c7
Malware Config
Targets
-
-
Target
cc6c1d144036f9d096355e5fdc166526ecbc09bf4a2491daac8c0c487b7d0c7d
-
Size
742KB
-
MD5
3f06d54f357a36e708f2b656db7d0bc0
-
SHA1
663a783e5b044da3e36b10e87c0321c2227fcd97
-
SHA256
cc6c1d144036f9d096355e5fdc166526ecbc09bf4a2491daac8c0c487b7d0c7d
-
SHA512
c458a431abf91c2e6e3dc0688ada5db78b7dea4d244576d29301f28bac6f0ed27fb9d332e3467ba850315ee6d8e33d3357a4f33ee126881719ab805a657196b1
-
SSDEEP
12288:ebkRGfwjxXPYmAqFHLPitab4yd9QtUdo53VReoulCHU8rXfwpsKHF8ca40:rRdY2rPitabPIWduSCHUyX4Vl8c7
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-