General
-
Target
6043b05c69ca902f6ae607d7557cb4d6afebe70a12735b61872ea9488748eb3b
-
Size
563KB
-
Sample
230423-zcjzyahd4t
-
MD5
db54fd89e4a776f94b6070c82586a9a8
-
SHA1
91169169797c4c3390dc2dc0d88581e3c40e44ad
-
SHA256
6043b05c69ca902f6ae607d7557cb4d6afebe70a12735b61872ea9488748eb3b
-
SHA512
67890795c997d7b2c2f2552db3bbd50bbe55adacf217e0de2b10ff06545aca60654ad2d99b1ecd9671cf380007efa87d22e986aa0aba6322f8592b8e773e8b08
-
SSDEEP
12288:Ky90DHtZudxir4Q+JIDICzhhgH2UbCei9KkL93:KyeS0rXrDIcjm2WI9KkL93
Static task
static1
Malware Config
Targets
-
-
Target
6043b05c69ca902f6ae607d7557cb4d6afebe70a12735b61872ea9488748eb3b
-
Size
563KB
-
MD5
db54fd89e4a776f94b6070c82586a9a8
-
SHA1
91169169797c4c3390dc2dc0d88581e3c40e44ad
-
SHA256
6043b05c69ca902f6ae607d7557cb4d6afebe70a12735b61872ea9488748eb3b
-
SHA512
67890795c997d7b2c2f2552db3bbd50bbe55adacf217e0de2b10ff06545aca60654ad2d99b1ecd9671cf380007efa87d22e986aa0aba6322f8592b8e773e8b08
-
SSDEEP
12288:Ky90DHtZudxir4Q+JIDICzhhgH2UbCei9KkL93:KyeS0rXrDIcjm2WI9KkL93
-
Executes dropped EXE
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-