General
-
Target
18f0a71fb0f68aede4982ef688098a59cbd98d6bd4f0e4da571f1f87149afe2c
-
Size
1.2MB
-
Sample
230423-z3w27afh88
-
MD5
5b76ceece64e934d4e17d69b259367db
-
SHA1
d718495eec82664bc2e61c3249847660cf4f6a84
-
SHA256
18f0a71fb0f68aede4982ef688098a59cbd98d6bd4f0e4da571f1f87149afe2c
-
SHA512
c015276a6a1d7a3096dd7a938de527cc03dcf7fc4d5351c45a9d4015932334aef854c737f503076d5155eb4e6c42dd2bd453990d3ab66cc937dfd3426146a4bf
-
SSDEEP
24576:nu0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:u0+BshUC1VzUjjPP0/
Static task
static1
Malware Config
Targets
-
-
Target
18f0a71fb0f68aede4982ef688098a59cbd98d6bd4f0e4da571f1f87149afe2c
-
Size
1.2MB
-
MD5
5b76ceece64e934d4e17d69b259367db
-
SHA1
d718495eec82664bc2e61c3249847660cf4f6a84
-
SHA256
18f0a71fb0f68aede4982ef688098a59cbd98d6bd4f0e4da571f1f87149afe2c
-
SHA512
c015276a6a1d7a3096dd7a938de527cc03dcf7fc4d5351c45a9d4015932334aef854c737f503076d5155eb4e6c42dd2bd453990d3ab66cc937dfd3426146a4bf
-
SSDEEP
24576:nu0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:u0+BshUC1VzUjjPP0/
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-