General
-
Target
Member Stealer.exe
-
Size
24.3MB
-
Sample
221126-ved49acg7x
-
MD5
e3c9d895497ffded48073eee0295bea4
-
SHA1
9ddaca27638db15427aca282b5a16c20eda6184e
-
SHA256
b1256289d4aaada74a40b6ca52aa0d382b7660943ea31744486007653ee925ad
-
SHA512
6a46f8041c2c85ea1adde62167bf4f054b9303eebb56fc5f14c116dd90a31faa088c50059c9c1d8cef8fa150ee64dfcef7fc64da502e7c3b6209f097b673d855
-
SSDEEP
393216:vmnJPDpxSBQjE7v4/Gx3OajsPk/SRSu8LrB2KNIWHzQUfUKls0p8lzOoVty:WIBQjUSq3OLk/VjLt2m1Bs0pa/y
Static task
static1
Behavioral task
behavioral1
Sample
Member Stealer.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
Member Stealer.exe
-
Size
24.3MB
-
MD5
e3c9d895497ffded48073eee0295bea4
-
SHA1
9ddaca27638db15427aca282b5a16c20eda6184e
-
SHA256
b1256289d4aaada74a40b6ca52aa0d382b7660943ea31744486007653ee925ad
-
SHA512
6a46f8041c2c85ea1adde62167bf4f054b9303eebb56fc5f14c116dd90a31faa088c50059c9c1d8cef8fa150ee64dfcef7fc64da502e7c3b6209f097b673d855
-
SSDEEP
393216:vmnJPDpxSBQjE7v4/Gx3OajsPk/SRSu8LrB2KNIWHzQUfUKls0p8lzOoVty:WIBQjUSq3OLk/VjLt2m1Bs0pa/y
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-