Analysis
-
max time kernel
141s -
max time network
135s -
platform
windows7_x64 -
resource
win7-20220812-en -
resource tags
arch:x64arch:x86image:win7-20220812-enlocale:en-usos:windows7-x64system -
submitted
07-02-2023 09:06
Static task
static1
Behavioral task
behavioral1
Sample
ee496f1606f4f5efe8f45af252634f836502a05fb2d26950da0cbf53faebda23.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ee496f1606f4f5efe8f45af252634f836502a05fb2d26950da0cbf53faebda23.exe
Resource
win10v2004-20221111-en
General
-
Target
ee496f1606f4f5efe8f45af252634f836502a05fb2d26950da0cbf53faebda23.exe
-
Size
159KB
-
MD5
b29ad70c7126ec04cabfbd250eb6773d
-
SHA1
b478853d86fe81a499f7b3e25b693e2eb3c1d28f
-
SHA256
ee496f1606f4f5efe8f45af252634f836502a05fb2d26950da0cbf53faebda23
-
SHA512
e772cbe6ec92648f69609beed99bd47af2d0aab5ef1c5817944cbdcd2951ff4e97b6639e9f653b405cf5d5b8249c3cc9ce4101ae2ae186d49abc416e80375c80
-
SSDEEP
3072:Uk4sWR8jfowtrMuayS8h1556XhNWVub5vokomPb2eJSp8Bb8EG:QsWRWfDtrE2whpfPqC8EG
Malware Config
Extracted
marsstealer
Default
188.127.227.72/gate.php
Signatures
-
Mars Stealer
An infostealer written in C++ based on other infostealers.