General
-
Target
4f1531f5e531c53294b147b2c095164fc65381887e54af1ac4bc1e2132abf5dc
-
Size
857KB
-
Sample
221123-s3jnjafh81
-
MD5
c749c21f803c57c8bf49e238755a93f3
-
SHA1
334a9def55fff974476fcd38be831c935e9d5934
-
SHA256
4f1531f5e531c53294b147b2c095164fc65381887e54af1ac4bc1e2132abf5dc
-
SHA512
c1de881b485de37f0497594a2272103768db30f6ea5e5284c319f5e81c3f7fe86f6d437d16925d09de10bf6528fda5f6c64190375ddf932092e25480000b5320
-
SSDEEP
24576:af09nEigFFDjKhZFoGMQoWluSXlP7e3M:afgETDirporSy
Malware Config
Targets
-
-
Target
4f1531f5e531c53294b147b2c095164fc65381887e54af1ac4bc1e2132abf5dc
-
Size
857KB
-
MD5
c749c21f803c57c8bf49e238755a93f3
-
SHA1
334a9def55fff974476fcd38be831c935e9d5934
-
SHA256
4f1531f5e531c53294b147b2c095164fc65381887e54af1ac4bc1e2132abf5dc
-
SHA512
c1de881b485de37f0497594a2272103768db30f6ea5e5284c319f5e81c3f7fe86f6d437d16925d09de10bf6528fda5f6c64190375ddf932092e25480000b5320
-
SSDEEP
24576:af09nEigFFDjKhZFoGMQoWluSXlP7e3M:afgETDirporSy
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-