General
-
Target
adaa55fcb0069bacd3e41c99f52cc69eea2421e2f9e844f5c1ed1ece8a2c8b21
-
Size
743KB
-
Sample
221127-m9xk3sga31
-
MD5
9770c86d3e158377642e369bd6d166b0
-
SHA1
260b46fd39d90b1831dcbdb6d62b59be80262493
-
SHA256
adaa55fcb0069bacd3e41c99f52cc69eea2421e2f9e844f5c1ed1ece8a2c8b21
-
SHA512
3fcc5d6632e1f1769c922aec53619c4293469661d42cb190d7074a36d9175af3c346329bd6186c9cfaa2c2ee1cf8c1c0593cc74be11e8565b4a2ef0935e76f92
-
SSDEEP
12288:/G+uuZEZCZrZBQ6u3QaD/7pMU5y3saceZd/B4cFVJBtpd:+bYEAZlBQT9DdMU5ytvac/P7d
Malware Config
Targets
-
-
Target
adaa55fcb0069bacd3e41c99f52cc69eea2421e2f9e844f5c1ed1ece8a2c8b21
-
Size
743KB
-
MD5
9770c86d3e158377642e369bd6d166b0
-
SHA1
260b46fd39d90b1831dcbdb6d62b59be80262493
-
SHA256
adaa55fcb0069bacd3e41c99f52cc69eea2421e2f9e844f5c1ed1ece8a2c8b21
-
SHA512
3fcc5d6632e1f1769c922aec53619c4293469661d42cb190d7074a36d9175af3c346329bd6186c9cfaa2c2ee1cf8c1c0593cc74be11e8565b4a2ef0935e76f92
-
SSDEEP
12288:/G+uuZEZCZrZBQ6u3QaD/7pMU5y3saceZd/B4cFVJBtpd:+bYEAZlBQT9DdMU5ytvac/P7d
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-