General
-
Target
5d2a830bbe751350a97d0302292cec8f033186f3dbbce07f0fe61668a5780b70
-
Size
1.0MB
-
Sample
230424-all38aac91
-
MD5
8054608e2e21ae5c8c252b037de814ac
-
SHA1
02024ff12ae305ccabbea64817530c13c2e109d3
-
SHA256
5d2a830bbe751350a97d0302292cec8f033186f3dbbce07f0fe61668a5780b70
-
SHA512
6bbf01463f0fb05cae9cdeddd6e26dab67d7412603e0a40e79ac986b75d1c39b41b394ffeab10b0906513998d761b6eed8101b39efefc029aa11e774940f8c67
-
SSDEEP
24576:UcIu58c6Od3W36hmxGaKc1HIcf0ErjxO+TtR1N2VRDrcG3:kmZ6Od3WqFaKc1Hh8ErdOWR1N2fDrc
Static task
static1
Malware Config
Targets
-
-
Target
5d2a830bbe751350a97d0302292cec8f033186f3dbbce07f0fe61668a5780b70
-
Size
1.0MB
-
MD5
8054608e2e21ae5c8c252b037de814ac
-
SHA1
02024ff12ae305ccabbea64817530c13c2e109d3
-
SHA256
5d2a830bbe751350a97d0302292cec8f033186f3dbbce07f0fe61668a5780b70
-
SHA512
6bbf01463f0fb05cae9cdeddd6e26dab67d7412603e0a40e79ac986b75d1c39b41b394ffeab10b0906513998d761b6eed8101b39efefc029aa11e774940f8c67
-
SSDEEP
24576:UcIu58c6Od3W36hmxGaKc1HIcf0ErjxO+TtR1N2VRDrcG3:kmZ6Od3WqFaKc1Hh8ErdOWR1N2fDrc
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-