General
-
Target
9bb6c455385837e2a9807bf04388c481a61fd512b62b7093415a3e7fdf136268
-
Size
1.4MB
-
Sample
221126-k6hxeafh96
-
MD5
cebf520209814631b53703f998ef9e3d
-
SHA1
4db906c595802bbbb69d81d298a856004ccf54dc
-
SHA256
9bb6c455385837e2a9807bf04388c481a61fd512b62b7093415a3e7fdf136268
-
SHA512
8eb2a233107cf18a0e6c701aec78aea905f43d38dcddf7765a01ead4fc8cda14657406b0f32f8a4ffb64d17185fc8a4299f4f4abbb897ef18865d76b2ffbd5b0
-
SSDEEP
24576:/a3gxWhIFkH8c5Xp92kONwezoObs4E3gRuE1ewKo:bnFFCXP2kOWezjbm3gRuEU1o
Malware Config
Targets
-
-
Target
9bb6c455385837e2a9807bf04388c481a61fd512b62b7093415a3e7fdf136268
-
Size
1.4MB
-
MD5
cebf520209814631b53703f998ef9e3d
-
SHA1
4db906c595802bbbb69d81d298a856004ccf54dc
-
SHA256
9bb6c455385837e2a9807bf04388c481a61fd512b62b7093415a3e7fdf136268
-
SHA512
8eb2a233107cf18a0e6c701aec78aea905f43d38dcddf7765a01ead4fc8cda14657406b0f32f8a4ffb64d17185fc8a4299f4f4abbb897ef18865d76b2ffbd5b0
-
SSDEEP
24576:/a3gxWhIFkH8c5Xp92kONwezoObs4E3gRuE1ewKo:bnFFCXP2kOWezjbm3gRuEU1o
Score8/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-