General
-
Target
f36216d9c7b8fd7988d6c5ae1b82d276076fd6b7caa39540e40594401c7a1b45
-
Size
892KB
-
Sample
221124-vj7blage72
-
MD5
514515e596ae928fde32c0b2050a4586
-
SHA1
fbbed1ae6df993e0d8043910f99c833ce180e594
-
SHA256
f36216d9c7b8fd7988d6c5ae1b82d276076fd6b7caa39540e40594401c7a1b45
-
SHA512
2e0a68d2a5e9635aad88db5456e187106728c5aa86fbb69418b7762c74c09bdd7c1101d18cd8d7c3185cbeb9e3998f84a534d4def418cc14dc4515adaf2c1f70
-
SSDEEP
12288:05MJmFNtjvdRQveoYqy8zVqD/KplSY4sCAk6En5bV:bJmFNtrdRAYqy8zVqDKpKsd+nlV
Static task
static1
Behavioral task
behavioral1
Sample
f36216d9c7b8fd7988d6c5ae1b82d276076fd6b7caa39540e40594401c7a1b45.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
f36216d9c7b8fd7988d6c5ae1b82d276076fd6b7caa39540e40594401c7a1b45.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
f36216d9c7b8fd7988d6c5ae1b82d276076fd6b7caa39540e40594401c7a1b45
-
Size
892KB
-
MD5
514515e596ae928fde32c0b2050a4586
-
SHA1
fbbed1ae6df993e0d8043910f99c833ce180e594
-
SHA256
f36216d9c7b8fd7988d6c5ae1b82d276076fd6b7caa39540e40594401c7a1b45
-
SHA512
2e0a68d2a5e9635aad88db5456e187106728c5aa86fbb69418b7762c74c09bdd7c1101d18cd8d7c3185cbeb9e3998f84a534d4def418cc14dc4515adaf2c1f70
-
SSDEEP
12288:05MJmFNtjvdRQveoYqy8zVqD/KplSY4sCAk6En5bV:bJmFNtrdRAYqy8zVqDKpKsd+nlV
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-