General
-
Target
59c726fe6586829a539a6ae98269ce9bcd6890b20094e94f1918025abeadcc4d
-
Size
1.4MB
-
Sample
221126-k63ltaga36
-
MD5
04d8e957ef700e882251e1c2e4e0aba7
-
SHA1
2dd1b9181aa82dc02940abd7e3de4e133f177c9e
-
SHA256
59c726fe6586829a539a6ae98269ce9bcd6890b20094e94f1918025abeadcc4d
-
SHA512
d812829a29f3bdf5488f2e66eb23bd523f0ae59563a5d9c8d607769e524ee27a680a5b6393bb6b5649356f9cf71c7a87f31ea0e5e4a828e5f5db75445ed4aaff
-
SSDEEP
24576:thVMHSnXhD7v9QPA8bvxrZxgXNFE2m7sCbvsT:Jdnx3FQoELxg8fYCb0T
Malware Config
Targets
-
-
Target
59c726fe6586829a539a6ae98269ce9bcd6890b20094e94f1918025abeadcc4d
-
Size
1.4MB
-
MD5
04d8e957ef700e882251e1c2e4e0aba7
-
SHA1
2dd1b9181aa82dc02940abd7e3de4e133f177c9e
-
SHA256
59c726fe6586829a539a6ae98269ce9bcd6890b20094e94f1918025abeadcc4d
-
SHA512
d812829a29f3bdf5488f2e66eb23bd523f0ae59563a5d9c8d607769e524ee27a680a5b6393bb6b5649356f9cf71c7a87f31ea0e5e4a828e5f5db75445ed4aaff
-
SSDEEP
24576:thVMHSnXhD7v9QPA8bvxrZxgXNFE2m7sCbvsT:Jdnx3FQoELxg8fYCb0T
Score8/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-