General
-
Target
b4164a151f7535e0151471e4ebb7e16a9c2019fb1d79a3d93148e41d7dc13680
-
Size
563KB
-
Sample
230423-zg6phahd5y
-
MD5
8ded06de4c3817f6e0bb406a6b7632ec
-
SHA1
39dfe4c93fc9790d4f89d9a397869aa1b4413306
-
SHA256
b4164a151f7535e0151471e4ebb7e16a9c2019fb1d79a3d93148e41d7dc13680
-
SHA512
236b098b6dab90c0f8dd273934077c7894768cc7263688c9a83b57320ab28ad5d1a0c1b89cfd8199287c180e46c9ec71cf26c3f07f74eb0e3d5caafc7e9324fc
-
SSDEEP
12288:ry90EQCEDiNLIgkchFX34hGH2mHCei1KqPLlTmlj:ryUnDiOfc/gU2+I1KqDQN
Static task
static1
Malware Config
Targets
-
-
Target
b4164a151f7535e0151471e4ebb7e16a9c2019fb1d79a3d93148e41d7dc13680
-
Size
563KB
-
MD5
8ded06de4c3817f6e0bb406a6b7632ec
-
SHA1
39dfe4c93fc9790d4f89d9a397869aa1b4413306
-
SHA256
b4164a151f7535e0151471e4ebb7e16a9c2019fb1d79a3d93148e41d7dc13680
-
SHA512
236b098b6dab90c0f8dd273934077c7894768cc7263688c9a83b57320ab28ad5d1a0c1b89cfd8199287c180e46c9ec71cf26c3f07f74eb0e3d5caafc7e9324fc
-
SSDEEP
12288:ry90EQCEDiNLIgkchFX34hGH2mHCei1KqPLlTmlj:ryUnDiOfc/gU2+I1KqDQN
-
Executes dropped EXE
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-