General
-
Target
fef6f7a829f489a3daf369747505fcd7fd5b097a20c69d50290cd476f3bb2f1c
-
Size
720KB
-
Sample
221123-s3g5psfh8x
-
MD5
b8b3d8f33fc2f7fd91d51374ea70c740
-
SHA1
ca920fb505614c0aee2b2bc793ad952d4372db9a
-
SHA256
fef6f7a829f489a3daf369747505fcd7fd5b097a20c69d50290cd476f3bb2f1c
-
SHA512
f566e1cb14cee21dda8fa2ed08e305d7971023b7a2682168c45b3cc95c0282bb6e4790c40c8d515eb869e747ba3e3566db377825b2b94d5587575a91d7a85ac7
-
SSDEEP
12288:CviiRYG8wKRQu2Fww8thNu9SWNMN/JWLs2Ez31DIoAXycpJGfl:C6iOvRQRp8V2S0MbWo24lkoSw
Malware Config
Targets
-
-
Target
fef6f7a829f489a3daf369747505fcd7fd5b097a20c69d50290cd476f3bb2f1c
-
Size
720KB
-
MD5
b8b3d8f33fc2f7fd91d51374ea70c740
-
SHA1
ca920fb505614c0aee2b2bc793ad952d4372db9a
-
SHA256
fef6f7a829f489a3daf369747505fcd7fd5b097a20c69d50290cd476f3bb2f1c
-
SHA512
f566e1cb14cee21dda8fa2ed08e305d7971023b7a2682168c45b3cc95c0282bb6e4790c40c8d515eb869e747ba3e3566db377825b2b94d5587575a91d7a85ac7
-
SSDEEP
12288:CviiRYG8wKRQu2Fww8thNu9SWNMN/JWLs2Ez31DIoAXycpJGfl:C6iOvRQRp8V2S0MbWo24lkoSw
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-