General
-
Target
c750e3cc38e3105bc96c00eafb8d52fa01d0fb1affe4323a1e44bd87d74581cd
-
Size
1.1MB
-
Sample
221125-1pkmnshc45
-
MD5
0b2772ce4d5d106b06876df2b4389b7b
-
SHA1
7f8cb3f9c85cd32bd5b443315796d8866194f20b
-
SHA256
c750e3cc38e3105bc96c00eafb8d52fa01d0fb1affe4323a1e44bd87d74581cd
-
SHA512
f577d68fb6b762ee3602670efeb59315ec81a92baae598b385b2cbbdf5aae351dbe3f6e50ebe79b5d1049ddf416bea01279f21c0c149d97b9ade0be600415320
-
SSDEEP
24576:bA7EOCMnLPxNmLQQ39RnySXHGLvDzJc7x5TAWQPB:MA3iLPxsLQCRnLGL+3TAW
Malware Config
Targets
-
-
Target
c750e3cc38e3105bc96c00eafb8d52fa01d0fb1affe4323a1e44bd87d74581cd
-
Size
1.1MB
-
MD5
0b2772ce4d5d106b06876df2b4389b7b
-
SHA1
7f8cb3f9c85cd32bd5b443315796d8866194f20b
-
SHA256
c750e3cc38e3105bc96c00eafb8d52fa01d0fb1affe4323a1e44bd87d74581cd
-
SHA512
f577d68fb6b762ee3602670efeb59315ec81a92baae598b385b2cbbdf5aae351dbe3f6e50ebe79b5d1049ddf416bea01279f21c0c149d97b9ade0be600415320
-
SSDEEP
24576:bA7EOCMnLPxNmLQQ39RnySXHGLvDzJc7x5TAWQPB:MA3iLPxsLQCRnLGL+3TAW
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-