General
-
Target
fb93f0f64e791ab1bbb96e61ec64bbba7bfddd37ab272cf7332f06d5b1206134
-
Size
508KB
-
Sample
221204-mprt4abb85
-
MD5
39399cca49d6970c895860e9ef7f0773
-
SHA1
8a96651f011a2727dd3ad082686b2a205b1fe259
-
SHA256
fb93f0f64e791ab1bbb96e61ec64bbba7bfddd37ab272cf7332f06d5b1206134
-
SHA512
52467718250542945e8973f2c53f62a8ea37b955c80b5d6c940411f2e7de18f66a56406149496fb88b00ab26221430ca4399ac926d1cf4ebca2023ef4206e542
-
SSDEEP
12288:PIugRf20oBTDR4v7UE32r9z0Luoeo4dl01DntSk:PIubR+S+T4DGtSk
Malware Config
Targets
-
-
Target
fb93f0f64e791ab1bbb96e61ec64bbba7bfddd37ab272cf7332f06d5b1206134
-
Size
508KB
-
MD5
39399cca49d6970c895860e9ef7f0773
-
SHA1
8a96651f011a2727dd3ad082686b2a205b1fe259
-
SHA256
fb93f0f64e791ab1bbb96e61ec64bbba7bfddd37ab272cf7332f06d5b1206134
-
SHA512
52467718250542945e8973f2c53f62a8ea37b955c80b5d6c940411f2e7de18f66a56406149496fb88b00ab26221430ca4399ac926d1cf4ebca2023ef4206e542
-
SSDEEP
12288:PIugRf20oBTDR4v7UE32r9z0Luoeo4dl01DntSk:PIubR+S+T4DGtSk
Score7/10-
Reads local data of messenger clients
Infostealers often target stored data of messaging applications, which can include saved credentials and account information.
-
Uses the VBS compiler for execution
-
Suspicious use of SetThreadContext
-