General
-
Target
69f17ef2d8342ce40063a497b30a872b1ef88a56668ad4b48d1fa590ecc997c8
-
Size
1.4MB
-
Sample
221125-yp26lsbf77
-
MD5
4b5aba9cb441b35ed7a50ac6f8ffb2b0
-
SHA1
1ca30c2c91a92d1ee14613fba4ab050bc198f9c3
-
SHA256
69f17ef2d8342ce40063a497b30a872b1ef88a56668ad4b48d1fa590ecc997c8
-
SHA512
43e229035ef030e9c3a6c2508505f216cb91a0914e9572e4a2bcdc4a6a9d6f72806437c954ef0c6445a3b2fcd1b7ba19383fa7a654ee0e6341a9c519c0705198
-
SSDEEP
12288:ua74AK0EQ3soOmHNYWFS5pnAML9afnaRE9T3UdeNoKO5hNtTxZfLLMq9D+zAQSSP:uBAM6jNYW8DnAOafn0eNo/9x6q6H
Malware Config
Targets
-
-
Target
69f17ef2d8342ce40063a497b30a872b1ef88a56668ad4b48d1fa590ecc997c8
-
Size
1.4MB
-
MD5
4b5aba9cb441b35ed7a50ac6f8ffb2b0
-
SHA1
1ca30c2c91a92d1ee14613fba4ab050bc198f9c3
-
SHA256
69f17ef2d8342ce40063a497b30a872b1ef88a56668ad4b48d1fa590ecc997c8
-
SHA512
43e229035ef030e9c3a6c2508505f216cb91a0914e9572e4a2bcdc4a6a9d6f72806437c954ef0c6445a3b2fcd1b7ba19383fa7a654ee0e6341a9c519c0705198
-
SSDEEP
12288:ua74AK0EQ3soOmHNYWFS5pnAML9afnaRE9T3UdeNoKO5hNtTxZfLLMq9D+zAQSSP:uBAM6jNYW8DnAOafn0eNo/9x6q6H
Score8/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-