General
-
Target
653255d5f2986a5bdd8dc6ba6c5d63296e0d63b56b83dc231e7fca35ce3ca69f
-
Size
2.9MB
-
Sample
230402-l41vwafg64
-
MD5
bc13ca321e2156428860fda094135814
-
SHA1
4ca4b64670385f46b5d1bc896b2e2864d7e1c06b
-
SHA256
653255d5f2986a5bdd8dc6ba6c5d63296e0d63b56b83dc231e7fca35ce3ca69f
-
SHA512
dfcf650eeeeab25ee216dfd0b67d86ea813ba1dbd74960e0a687d36ca5af000fc8a98624f41f6d45f602a980a410dfa13a750969765477912dd63e07f89a7a7a
-
SSDEEP
49152:kbQgxEQr9dDQeA35BK5gleAGnWwVEd4u0OFoK0jhNbWyKt1IvfwEkAUXN4E:jgxn9aSMwVQB0OaKmNqDt1IVkDd
Malware Config
Targets
-
-
Target
653255d5f2986a5bdd8dc6ba6c5d63296e0d63b56b83dc231e7fca35ce3ca69f
-
Size
2.9MB
-
MD5
bc13ca321e2156428860fda094135814
-
SHA1
4ca4b64670385f46b5d1bc896b2e2864d7e1c06b
-
SHA256
653255d5f2986a5bdd8dc6ba6c5d63296e0d63b56b83dc231e7fca35ce3ca69f
-
SHA512
dfcf650eeeeab25ee216dfd0b67d86ea813ba1dbd74960e0a687d36ca5af000fc8a98624f41f6d45f602a980a410dfa13a750969765477912dd63e07f89a7a7a
-
SSDEEP
49152:kbQgxEQr9dDQeA35BK5gleAGnWwVEd4u0OFoK0jhNbWyKt1IvfwEkAUXN4E:jgxn9aSMwVQB0OaKmNqDt1IVkDd
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
VMProtect packed file
Detects executables packed with VMProtect commercial packer.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-