General

  • Target

    Costco Purchase Order.exe

  • Size

    1.1MB

  • Sample

    230725-qpfcvadd5v

  • MD5

    9b281abd93f1ea0b1d246ebc7aad1169

  • SHA1

    fbb53ae0a3e756d71bde5875a9d354f5b97848f7

  • SHA256

    11592500f755d82318d47eca784ea07ae649253a8655687d1c61f852f9e9eac9

  • SHA512

    31efcb6b01be38dfd0051571157a887a0ca5b418fa042eaac07e1e751b3604a96a6a58eabc1761d76e7353acf6dc2de903d9a0b6dfc07ff9cb082c4c1baa4673

  • SSDEEP

    24576:dxqFHIcTrGCSPiCADt2cwO7hPpaLMkgzWY5cjdvFU3la+C1+nV8jDH7:7qHIkrzSqCAZosBpaxPvGla+C1+nV8jH

Score
10/10

Malware Config

Extracted

Family

darkcloud

Attributes

Targets

    • Target

      Costco Purchase Order.exe

    • Size

      1.1MB

    • MD5

      9b281abd93f1ea0b1d246ebc7aad1169

    • SHA1

      fbb53ae0a3e756d71bde5875a9d354f5b97848f7

    • SHA256

      11592500f755d82318d47eca784ea07ae649253a8655687d1c61f852f9e9eac9

    • SHA512

      31efcb6b01be38dfd0051571157a887a0ca5b418fa042eaac07e1e751b3604a96a6a58eabc1761d76e7353acf6dc2de903d9a0b6dfc07ff9cb082c4c1baa4673

    • SSDEEP

      24576:dxqFHIcTrGCSPiCADt2cwO7hPpaLMkgzWY5cjdvFU3la+C1+nV8jDH7:7qHIkrzSqCAZosBpaxPvGla+C1+nV8jH

    Score
    10/10
    • DarkCloud

      An information stealer written in Visual Basic.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks