General
-
Target
df857ade5a2cb08c56caf34fc1429d1ebd164bb87d14c3f090ef7020c7bc2829
-
Size
704KB
-
Sample
230423-zckw8sfg33
-
MD5
840461b5e87761b14900fad039300b5f
-
SHA1
c23153ed3cc1790b41bb4470ee252a346f28e824
-
SHA256
df857ade5a2cb08c56caf34fc1429d1ebd164bb87d14c3f090ef7020c7bc2829
-
SHA512
4a24d93442edbe7e583e707ac3b0286e75cdafe3659b7d0d4f383df1e8a374acc5d385b20230620e88040f3dbb45fa12c1506f33fb110025e1bae8890a037b84
-
SSDEEP
12288:2y90fhJxO7EaTNIoJaoh8i/4I7meovxEY+Th32MMWCeiWK8rp71+v:2yErOrILoGi/0eAP+dGMpcWKY10
Static task
static1
Malware Config
Targets
-
-
Target
df857ade5a2cb08c56caf34fc1429d1ebd164bb87d14c3f090ef7020c7bc2829
-
Size
704KB
-
MD5
840461b5e87761b14900fad039300b5f
-
SHA1
c23153ed3cc1790b41bb4470ee252a346f28e824
-
SHA256
df857ade5a2cb08c56caf34fc1429d1ebd164bb87d14c3f090ef7020c7bc2829
-
SHA512
4a24d93442edbe7e583e707ac3b0286e75cdafe3659b7d0d4f383df1e8a374acc5d385b20230620e88040f3dbb45fa12c1506f33fb110025e1bae8890a037b84
-
SSDEEP
12288:2y90fhJxO7EaTNIoJaoh8i/4I7meovxEY+Th32MMWCeiWK8rp71+v:2yErOrILoGi/0eAP+dGMpcWKY10
-
Executes dropped EXE
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-