General
-
Target
e711e65b464d2d0282b10437ba4935ef8bd3b9b17d361f2c3077bca6892a2327
-
Size
1.1MB
-
Sample
221123-nbqwbabe6s
-
MD5
13abd20dadcf0db8e9225f359fbda4fd
-
SHA1
ffa702c2d9da1e5f94135a374c6755e2b5ed38d4
-
SHA256
e711e65b464d2d0282b10437ba4935ef8bd3b9b17d361f2c3077bca6892a2327
-
SHA512
1146296e3d6bb33d2c53bf4046123321bfb8a657d4363185845446920a8feccd4aa3c3cc147c48c504cea596a18004b55d883b6a98dcf03e52b4b1f991c7e25a
-
SSDEEP
24576:9A7EOCMnLPxNmLQQ39RnySXHGLvDzJc7x5TAWQPB:6A3iLPxsLQCRnLGL+3TAW
Malware Config
Targets
-
-
Target
e711e65b464d2d0282b10437ba4935ef8bd3b9b17d361f2c3077bca6892a2327
-
Size
1.1MB
-
MD5
13abd20dadcf0db8e9225f359fbda4fd
-
SHA1
ffa702c2d9da1e5f94135a374c6755e2b5ed38d4
-
SHA256
e711e65b464d2d0282b10437ba4935ef8bd3b9b17d361f2c3077bca6892a2327
-
SHA512
1146296e3d6bb33d2c53bf4046123321bfb8a657d4363185845446920a8feccd4aa3c3cc147c48c504cea596a18004b55d883b6a98dcf03e52b4b1f991c7e25a
-
SSDEEP
24576:9A7EOCMnLPxNmLQQ39RnySXHGLvDzJc7x5TAWQPB:6A3iLPxsLQCRnLGL+3TAW
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-