General
-
Target
g2a_rs_installer_PinnacleCommunications.exe
-
Size
3.6MB
-
Sample
230614-jcegfsec66
-
MD5
e5355f7f6b26ef08999789585b9e1167
-
SHA1
22b7cb328cc3ad0c8434ac524fd006da5ab656ce
-
SHA256
85acf415f467b8a109f573b390ada509ff22dadfa07ef4eecfccbd9c818833d7
-
SHA512
8078ce2594c21059f8d9b2ff451a50af744dcc2466c46992bea79ba8e37ae299522f56fa9044f44f4b43f5039266bdcc4d6836ecd67509110ea66a6d6e25674e
-
SSDEEP
49152:dcCHRfGHO+LMouo8SIBY5TvXgBNyL63GC6LYmlGWILo3QK2mCPGdOyoHjhpX:KAf4W1XsQBtGvLYmMWIpxGcyoHjhpX
Malware Config
Targets
-
-
Target
g2a_rs_installer_PinnacleCommunications.exe
-
Size
3.6MB
-
MD5
e5355f7f6b26ef08999789585b9e1167
-
SHA1
22b7cb328cc3ad0c8434ac524fd006da5ab656ce
-
SHA256
85acf415f467b8a109f573b390ada509ff22dadfa07ef4eecfccbd9c818833d7
-
SHA512
8078ce2594c21059f8d9b2ff451a50af744dcc2466c46992bea79ba8e37ae299522f56fa9044f44f4b43f5039266bdcc4d6836ecd67509110ea66a6d6e25674e
-
SSDEEP
49152:dcCHRfGHO+LMouo8SIBY5TvXgBNyL63GC6LYmlGWILo3QK2mCPGdOyoHjhpX:KAf4W1XsQBtGvLYmMWIpxGcyoHjhpX
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks whether UAC is enabled
-
Modifies WinLogon
-
Drops file in System32 directory
-