General
-
Target
5881abc8e740b6e698c2e79975e289de78106e275ce2810a9a5d93c7913d25eb
-
Size
710KB
-
Sample
221127-pawkvafc77
-
MD5
c6ed7f95eeda10e18578e88b2c35c2fa
-
SHA1
9c6efb1c02ddb4bf32173b5ab14f051a41a7fa74
-
SHA256
5881abc8e740b6e698c2e79975e289de78106e275ce2810a9a5d93c7913d25eb
-
SHA512
326a4bdde48b9538821120930f978c3268f58c50697d0d1aac0b267153aeee9ae62ee6af2b69b623e500dfe1dd52b33f803fdfdcbfbfe781c3097650a2209ca2
-
SSDEEP
12288:vopfsNd0jbsZ+Uou1jejoUViYMnyz73cxOXLy+u5RLrCeIMCdwOUOH0jn:Q1sNd0jg+jcjejdKWjb85RXCejRO+
Malware Config
Targets
-
-
Target
5881abc8e740b6e698c2e79975e289de78106e275ce2810a9a5d93c7913d25eb
-
Size
710KB
-
MD5
c6ed7f95eeda10e18578e88b2c35c2fa
-
SHA1
9c6efb1c02ddb4bf32173b5ab14f051a41a7fa74
-
SHA256
5881abc8e740b6e698c2e79975e289de78106e275ce2810a9a5d93c7913d25eb
-
SHA512
326a4bdde48b9538821120930f978c3268f58c50697d0d1aac0b267153aeee9ae62ee6af2b69b623e500dfe1dd52b33f803fdfdcbfbfe781c3097650a2209ca2
-
SSDEEP
12288:vopfsNd0jbsZ+Uou1jejoUViYMnyz73cxOXLy+u5RLrCeIMCdwOUOH0jn:Q1sNd0jg+jcjejdKWjb85RXCejRO+
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-