General
-
Target
5881ae32f2d7be3dfeb72913b997abadfdc8cf92fe25a9436217b86ff671a385
-
Size
1.2MB
-
Sample
230423-zawkysfg24
-
MD5
62fbb159a0d4357fb0cb78daa6651f1f
-
SHA1
2be37a094a7b4af5064392b9af6634b47e9e1690
-
SHA256
5881ae32f2d7be3dfeb72913b997abadfdc8cf92fe25a9436217b86ff671a385
-
SHA512
aec8a18403ec6cd457d63c6ee87e1f5a2a6e2f6dbd52ee1548f9ce81260a8cf19c404295271c7ea6327d0c5723387dce2df76d8bb67c3f5af3d1886f63f48477
-
SSDEEP
24576:M8FAGzhOxi/8+hxyHwVrKZzyykcgwIk4vkoFNxeAs:lKoyI1EQVazy0RIk4vkoFHe
Static task
static1
Malware Config
Targets
-
-
Target
5881ae32f2d7be3dfeb72913b997abadfdc8cf92fe25a9436217b86ff671a385
-
Size
1.2MB
-
MD5
62fbb159a0d4357fb0cb78daa6651f1f
-
SHA1
2be37a094a7b4af5064392b9af6634b47e9e1690
-
SHA256
5881ae32f2d7be3dfeb72913b997abadfdc8cf92fe25a9436217b86ff671a385
-
SHA512
aec8a18403ec6cd457d63c6ee87e1f5a2a6e2f6dbd52ee1548f9ce81260a8cf19c404295271c7ea6327d0c5723387dce2df76d8bb67c3f5af3d1886f63f48477
-
SSDEEP
24576:M8FAGzhOxi/8+hxyHwVrKZzyykcgwIk4vkoFNxeAs:lKoyI1EQVazy0RIk4vkoFHe
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-