General
-
Target
59d0a3cca9a435df113c51ae7499ec04c52282e138545dd0e55954d610cf19c7
-
Size
563KB
-
Sample
230423-z81bsshe8x
-
MD5
91a1b8cb69f8dcae63781d1be9984724
-
SHA1
1ee5d93439332ce993a2a35a783e0fe06198166c
-
SHA256
59d0a3cca9a435df113c51ae7499ec04c52282e138545dd0e55954d610cf19c7
-
SHA512
1b0909e74b041e18a68059304f579d3986fe1713856acbd687b8460dccca553a4f328a6974467a3b02ee88e2d689a6038066d97ae9e55c91c4ed549f8cf84bcf
-
SSDEEP
12288:by90DlhDxRf+fp5IQPzj0vV/nMo/oXLIh/QN:byeNJ+fpV7gvV/vgu+
Static task
static1
Malware Config
Targets
-
-
Target
59d0a3cca9a435df113c51ae7499ec04c52282e138545dd0e55954d610cf19c7
-
Size
563KB
-
MD5
91a1b8cb69f8dcae63781d1be9984724
-
SHA1
1ee5d93439332ce993a2a35a783e0fe06198166c
-
SHA256
59d0a3cca9a435df113c51ae7499ec04c52282e138545dd0e55954d610cf19c7
-
SHA512
1b0909e74b041e18a68059304f579d3986fe1713856acbd687b8460dccca553a4f328a6974467a3b02ee88e2d689a6038066d97ae9e55c91c4ed549f8cf84bcf
-
SSDEEP
12288:by90DlhDxRf+fp5IQPzj0vV/nMo/oXLIh/QN:byeNJ+fpV7gvV/vgu+
-
Executes dropped EXE
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-