Extracted

• • Target

    Praxair-Prostar-Platinum-Regulator-Operating-Manual.exe

  • Size

    109.2MB

  • MD5

    3fd9d81c06743c2eaffce6995ff1e46c

  • SHA1

    4c64ea9050da098573ed0bf08a4ce285cb915465

  • SHA256

    f799e7e81b66cf7d787abc864ed82c3dc5fd2aa95c9f3d24a39c79a3741d37c1

  • SHA512

    ca57c64ff307cbf16cc4e6cfecebf50ff609de8de62d0ff5519296ecb69764af3635052d0a79318d1a43378f9a704b51b01b6556a010a1ab6f009f21d511df9d

  • SSDEEP

    49152:tpSLLUdk/rsMH0S1VaCS/8YpDAb/0tZ4DTtoJjOK/uQU14N0aCoWqGoUZfaqqAn/:tm

  Score

  10^/10

  jupyterbackdoorstealertrojan

  • Jupyter, SolarMarker

    Jupyter is a backdoor and infostealer first seen in mid 2020.

    backdoortrojanstealerjupyter

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  behavioral1