General
-
Target
bfe0a14f6c228553b99ed5d3c8cf7f912ce455b2bcf7365794580cb5e345c673
-
Size
1.4MB
-
Sample
221126-k58rfafh86
-
MD5
8deac99626748ee0b00677494aa31c00
-
SHA1
efbf75676915f21bf1d105044a09e75067b36ac6
-
SHA256
bfe0a14f6c228553b99ed5d3c8cf7f912ce455b2bcf7365794580cb5e345c673
-
SHA512
1592ce8b63cd6bcc1d6e73ed00b7c4db983a9ccde8b8476dace265b1d8a0d7b36ec53c775f14aa2e6c1ace2f6fd1e8c5b7e2b7c5ef402f32b082565ec65a6bfd
-
SSDEEP
24576:2Sk1ux1rjLCegwtUHVUPMO3bbi/vXEqGdY1MIhkBva:ZCegwS1UUOtqWY1DhV
Malware Config
Targets
-
-
Target
bfe0a14f6c228553b99ed5d3c8cf7f912ce455b2bcf7365794580cb5e345c673
-
Size
1.4MB
-
MD5
8deac99626748ee0b00677494aa31c00
-
SHA1
efbf75676915f21bf1d105044a09e75067b36ac6
-
SHA256
bfe0a14f6c228553b99ed5d3c8cf7f912ce455b2bcf7365794580cb5e345c673
-
SHA512
1592ce8b63cd6bcc1d6e73ed00b7c4db983a9ccde8b8476dace265b1d8a0d7b36ec53c775f14aa2e6c1ace2f6fd1e8c5b7e2b7c5ef402f32b082565ec65a6bfd
-
SSDEEP
24576:2Sk1ux1rjLCegwtUHVUPMO3bbi/vXEqGdY1MIhkBva:ZCegwS1UUOtqWY1DhV
Score8/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-