General
-
Target
ce33105f4d35148b233c1d9b377d34a01eed9ab3097eddb98fb4eeea7e134c39
-
Size
600KB
-
Sample
221123-s3kktsfh9t
-
MD5
f063d21940f99fcd041c89eae2cd4fc2
-
SHA1
0bc9cad66aea5e5c8ad9af55242e192a81a97207
-
SHA256
ce33105f4d35148b233c1d9b377d34a01eed9ab3097eddb98fb4eeea7e134c39
-
SHA512
dead210cbfb16373e5bbac949ffa5d1ad5863e75906557c0dbfcfc4735dc2dd0d0f17f9c8a6c7fef0c24f585bb2b78b0aaf97f2e5ff9d2e0344e126b2db07823
-
SSDEEP
12288:/foEIyN58FKzJleFLdeAjBFWaY9eH5xrjwHbCEf82YvXIDPttd:/foEIyN58FK9lM4A9FWKnH0b582mX4Vt
Malware Config
Targets
-
-
Target
ce33105f4d35148b233c1d9b377d34a01eed9ab3097eddb98fb4eeea7e134c39
-
Size
600KB
-
MD5
f063d21940f99fcd041c89eae2cd4fc2
-
SHA1
0bc9cad66aea5e5c8ad9af55242e192a81a97207
-
SHA256
ce33105f4d35148b233c1d9b377d34a01eed9ab3097eddb98fb4eeea7e134c39
-
SHA512
dead210cbfb16373e5bbac949ffa5d1ad5863e75906557c0dbfcfc4735dc2dd0d0f17f9c8a6c7fef0c24f585bb2b78b0aaf97f2e5ff9d2e0344e126b2db07823
-
SSDEEP
12288:/foEIyN58FKzJleFLdeAjBFWaY9eH5xrjwHbCEf82YvXIDPttd:/foEIyN58FK9lM4A9FWKnH0b582mX4Vt
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-