General
-
Target
b1c671357339bfcb0475ba1f5d5943a71f233bfcb4672ac6770c484da6bd2646
-
Size
767KB
-
Sample
221126-vq84rsag46
-
MD5
0bced5b3899ecd2cbd12636ac6efbb30
-
SHA1
65b9400234f14ef7ec2e418996dcd2bdd0b12706
-
SHA256
b1c671357339bfcb0475ba1f5d5943a71f233bfcb4672ac6770c484da6bd2646
-
SHA512
4f4f0eec40d44cba6736edca3486f81fb12b803171119cd5c9919372a4ecc76634c8c824b198126afa36e6ff480d22b7d5c2e538b6c4d2cfd9de387018f49849
-
SSDEEP
12288:LNR+LC7fkUUJhAI+3HdXyniFzgMwkF0MC:2+7svJ6I+XIiFzgm0MC
Malware Config
Targets
-
-
Target
b1c671357339bfcb0475ba1f5d5943a71f233bfcb4672ac6770c484da6bd2646
-
Size
767KB
-
MD5
0bced5b3899ecd2cbd12636ac6efbb30
-
SHA1
65b9400234f14ef7ec2e418996dcd2bdd0b12706
-
SHA256
b1c671357339bfcb0475ba1f5d5943a71f233bfcb4672ac6770c484da6bd2646
-
SHA512
4f4f0eec40d44cba6736edca3486f81fb12b803171119cd5c9919372a4ecc76634c8c824b198126afa36e6ff480d22b7d5c2e538b6c4d2cfd9de387018f49849
-
SSDEEP
12288:LNR+LC7fkUUJhAI+3HdXyniFzgMwkF0MC:2+7svJ6I+XIiFzgm0MC
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-