Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

wPalw_cwukn9gn.zip

windows11-21h2-x64

1

wPalw_cwuk...GP.xml

windows11-21h2-x64

1

wPalw_cwuk...ns.xml

windows11-21h2-x64

1

wPalw_cwuk...ce.xml

windows11-21h2-x64

1

wPalw_cwuk...ms.xml

windows11-21h2-x64

1

wPalw_cwuk...ew.xml

windows11-21h2-x64

1

wPalw_cwuk...at.xml

windows11-21h2-x64

1

wPalw_cwuk...SI.xml

windows11-21h2-x64

1

wPalw_cwuk...cy.xml

windows11-21h2-x64

1

wPalw_cwuk...me.xml

windows11-21h2-x64

1

wPalw_cwuk...er.xml

windows11-21h2-x64

1

wPalw_cwuk...er.xml

windows11-21h2-x64

1

wPalw_cwuk...gs.xml

windows11-21h2-x64

1

wPalw_cwuk...ay.xml

windows11-21h2-x64

1

wPalw_cwuk...cs.xml

windows11-21h2-x64

1

wPalw_cwuk...ts.xml

windows11-21h2-x64

1

wPalw_cwuk...le.xml

windows11-21h2-x64

1

wPalw_cwuk...OM.xml

windows11-21h2-x64

1

wPalw_cwuk...a.adml

windows11-21h2-x64

3

wPalw_cwuk...er.xml

windows11-21h2-x64

1

wPalw_cwuk...nt.xml

windows11-21h2-x64

1

wPalw_cwuk...nf.xml

windows11-21h2-x64

1

wPalw_cwuk...el.xml

windows11-21h2-x64

1

wPalw_cwuk...ay.xml

windows11-21h2-x64

1

wPalw_cwuk...ls.xml

windows11-21h2-x64

1

wPalw_cwuk...sp.xml

windows11-21h2-x64

1

wPalw_cwuk...UI.xml

windows11-21h2-x64

1

wPalw_cwuk...rs.xml

windows11-21h2-x64

1

wPalw_cwuk...el.xml

windows11-21h2-x64

1

wPalw_cwuk...OM.xml

windows11-21h2-x64

1

wPalw_cwuk...FS.xml

windows11-21h2-x64

1

wPalw_cwuk...gn.exe

windows11-21h2-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    wPalw_cwukn9gn.zip

  • Size

    6.7MB

  • Sample

    240203-af2aysehcr

  • MD5

    36497fc96f268a44e980306646ddb5e4

  • SHA1

    b72e13025075b5d2c69642404d22cdccc403a98e

  • SHA256

    68023679f813c408f03163711a4dfdf1f947529debf7e2f4fd795c4d44ee99f2

  • SHA512

    001af439e21cd310fd4804078cd35b59e86230e1bb9dbe3bb74e29c0cea2249f0e5c2f119ee6cf15af0150fd58df0527ffa9dae2c0406cb0a062366a10e82b20

  • SSDEEP

    196608:HP/aYRhgljsZ+Z5zHEdbhuTKCL1wjcnc+gq88A:HP/phLZ+rUM1ij+h8b

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      wPalw_cwukn9gn.zip

    • Size

      6.7MB

    • MD5

      36497fc96f268a44e980306646ddb5e4

    • SHA1

      b72e13025075b5d2c69642404d22cdccc403a98e

    • SHA256

      68023679f813c408f03163711a4dfdf1f947529debf7e2f4fd795c4d44ee99f2

    • SHA512

      001af439e21cd310fd4804078cd35b59e86230e1bb9dbe3bb74e29c0cea2249f0e5c2f119ee6cf15af0150fd58df0527ffa9dae2c0406cb0a062366a10e82b20

    • SSDEEP

      196608:HP/aYRhgljsZ+Z5zHEdbhuTKCL1wjcnc+gq88A:HP/phLZ+rUM1ij+h8b

    Score
    1/10
    behavioral1

    • Target

      wPalw_cwukn9gn/About/en-US/AVSValidationGP.adml

    • Size

      1KB

    • MD5

      fb42a7b5318536ea7eeff2f42abd0c0e

    • SHA1

      810edfd0827c3b7c28bdd8eeacf60cf67f7958f3

    • SHA256

      153453be5f26fe1a35a50df05754cc2e3a00cdd9126dea085884aff2ba39802d

    • SHA512

      fb66022707ab67c88867c5b07b1790ee6f087c223649f23a2afe72723ebdbead47aabd00b353916af3e4dff68bbf96fd4ce29819f5576353c9b6ac8c0119a68e

    Score
    1/10
    behavioral2

    • Target

      wPalw_cwukn9gn/About/en-US/AccountNotifications.adml

    • Size

      1KB

    • MD5

      93f4496bad051fa85f904decdcc22069

    • SHA1

      60efed1f9ae0cfc5044c6b211b0854b64b5d2bc5

    • SHA256

      6fc310ca31e7e196b9e9a3d3eeb38649609a5ca33d2eced878bc6a721ed3802b

    • SHA512

      840cbe5457f2e84043dd8c7c169eafe4481743a434b7bca5f2176820d89938e954a38528a456b2832db19fe33f139acf3418adc936d00773daf33bb129928e5f

    Score
    1/10
    behavioral3

    • Target

      wPalw_cwukn9gn/About/en-US/ActiveXInstallService.adml

    • Size

      5KB

    • MD5

      46876b1e6c8ba1fbf3abc838ccf809b0

    • SHA1

      45ce70edd0ca87a5920d43385066087df134e30f

    • SHA256

      f49428cabb6f6671d95ef214133100c268d2ab04dbf0f095dd08b0105ed9d8a7

    • SHA512

      702c319b2d181753be99d99c3dff9f6c578934067c89a614e9e4b0a5da6a0fb3545a3ba4986e12e9da5de8c6af56780982d181a8d949a6e573af725e2505deca

    • SSDEEP

      48:cgeD5x8gm0fUsPXKn5o3OqALPLFS31U87GUkNAsGNuiYzXmoOX1mTXoWlIGe0FsC:LeD5pmKeC3G8SsuiYR1Pl7e0V4zZpBsV

    Score
    1/10
    behavioral4

    • Target

      wPalw_cwukn9gn/About/en-US/AddRemovePrograms.adml

    • Size

      10KB

    • MD5

      dfe20a0ca8674d6eaea280c139e2688a

    • SHA1

      97027b92d40f5029ff296a9ea3105b775b50c209

    • SHA256

      c97cd236f8be2b235685d3d16632482839208604db3f550f9524eafda33b9ca9

    • SHA512

      120c45bd17045b6f3d4a9295e1888d81ffa99ed0f1d146aa2eec387c1187eef8c718179771bc0cdbe01a37a487d933f55c92f6f37954f392f007cbfaa2aec877

    • SSDEEP

      192:Eyvs59wT2mCtKNSMRdMi4LBDZDHZEzT+ygx5LDkFdzj9nWyihWhqeGzpbeEKJ28m:ZvyiCDdyTO54zj9na8hqe6pbeEK5jq

    Score
    1/10
    behavioral5

    • Target

      wPalw_cwukn9gn/About/en-US/AllowBuildPreview.adml

    • Size

      1KB

    • MD5

      b6d073d3306d9151657065c53e6295ba

    • SHA1

      ecc6291ecb342a3a64a4d2667b4be9c462673c26

    • SHA256

      a971ded48635c6a9c802121a3b25bfec27cfc5e132b51a60270d8333b1c6e8ed

    • SHA512

      408ace83b567cee1662b6f04cc01c675306a414e6abef1936aa2b54824de4cba4c34cb478b4f5c10e7f3973260ef6ee28a45fe80b06716f37c7e52ca86ee3a02

    Score
    1/10
    behavioral6

    • Target

      wPalw_cwukn9gn/About/en-US/AppCompat.adml

    • Size

      9KB

    • MD5

      10234083de8c16fde95d91dffc26b499

    • SHA1

      5d2aa9e3588b35605af0007f2f5aa945599621ae

    • SHA256

      6dd55fdc1716558cfc5681230d6b2495cff0925b97c70e48b3c70c6e97c7b8d4

    • SHA512

      442fff90674b0da27e3ec1971db5477f5a1687416f02b44f00f62f83238915e26a588422c775d665b8de8d0efe534cf60d7e5dfd4fa90c6f4be995e7f1149781

    • SSDEEP

      192:EsMVhCuGKHl6hIAtZUqxw66Utw0Uvk3EUN2X/TDcvEn:J/uP6GAjj6mcvk3EUN2XXcvQ

    Score
    1/10
    behavioral7

    • Target

      wPalw_cwukn9gn/About/en-US/AppHVSI.adml

    • Size

      12KB

    • MD5

      722de68049b62369430b466c00f0847e

    • SHA1

      8bda688ae459c6c17cd392ce58a95cb97bd6833e

    • SHA256

      c62ae60421a467ac59e3f6cf41b744671fbbe66ea64b06bc42248caf7155b440

    • SHA512

      3ec3cefd0d930f3d252d8a65dbdf7b76abdff2bb03ff0307ca23f70c468fb91944297df22ddf285e874e6230c86a7fd0903df32dbcf7d6a50364b78c54e9a8ae

    • SSDEEP

      192:EY5XHnPunQ12tnFBlx977DBPZ+if1zWgfWu9yKR:5PuwCb77Zzp

    Score
    1/10
    behavioral8

    • Target

      wPalw_cwukn9gn/About/en-US/AppPrivacy.adml

    • Size

      50KB

    • MD5

      22a23a3135e8f6f1f890d353f8457ff6

    • SHA1

      f430e549cdebb53a901c91bbca8f5004e51ea6c7

    • SHA256

      cdc15c38c2a3df041e1788c33bf3221a036842e104c42d12757115dbe541dc25

    • SHA512

      c44946fa77b54a7be9c1e34839da9cc03cc5fad3b483875ac4530b1a6314ad4dd336e9109bf9190f5924f42056d8dbb2e0d7afd31de941869cc300dfccd5f41e

    • SSDEEP

      1536:xjA05EBogU7k9hDP96ME1N+z15K65aLDF94Dr96KlCqH485MNd/7kJZ148PkVrAF:M

    Score
    1/10
    behavioral9

    • Target

      wPalw_cwukn9gn/About/en-US/AppXRuntime.adml

    • Size

      5KB

    • MD5

      060cff4ab5cd4efeee7aefe922c4fc67

    • SHA1

      b47cda7eb6516705ff72efd73bb8bb2698d38d98

    • SHA256

      5bfdf03e67b43aea87a638b40eeacfe97cf183d5be3ebd5da0071654cfbbaad5

    • SHA512

      12b12f5debf7e9f960b90013e881ac55509da198201a3d6f7fe1e7bbf6e410202b2ef6f80b837ad3d6c67cc13b8b38681984a84a7834501becb6514790510462

    • SSDEEP

      96:jJpm5IJUVaBfgHt6kNEmB+kClbNpbwJbq2gATQ48v8pW03V:Xc3AIHFFq2HTZ8iW0F

    Score
    1/10
    behavioral10

    • Target

      wPalw_cwukn9gn/About/en-US/AppxPackageManager.adml

    • Size

      7KB

    • MD5

      df091e6ea2ce1c09a62d4b9df0d158d9

    • SHA1

      5e294fed77c50c6318e671e083cc893d09522f01

    • SHA256

      876c8db2ee7a7e8c42556914e46c5234852b16e7c55c9f80c97e1c6fcc2ca88c

    • SHA512

      8cead3b825028a2671fef03acda162d7f1bd80fc5ccc90cd55a41355673bdee76fcb4b3d0b1438a6c61e32f90aedfa7a12faf293bc59d2d639cbdf0335bb1687

    • SSDEEP

      192:XTLgW6VHSv5bREwYOeKOP7FsO0xKvvATF+ZvsPfmCfWn:vgzSv5tVYObOTF/PvvAZ+ZEbK

    Score
    1/10
    behavioral11

    • Target

      wPalw_cwukn9gn/About/en-US/AttachmentManager.adml

    • Size

      9KB

    • MD5

      156adebca5cd43e0d849f921b26594c3

    • SHA1

      0dcda3a3c5cdb824d7fae9fd2d52638de6bac841

    • SHA256

      6974aebdcb65ab63decd224d3c060f0afca11e00c781657ead44f64073094bf8

    • SHA512

      32dc4890719aaebc7cb5a088ef7c4fd7a86207c36e76c0fa60584e3df0687c2df297cbf82750885bcd42542700bd0d14011d57d9ced9fc32e582f70061c68013

    • SSDEEP

      96:LeD5pmiPXXvXd0GkXgueX0dX0LhTW9jS+9FMDPaSPL9DVH60XZgn9ZE60Y2IHm0s:EZHvmQ/WXtyPHPLuV3HmEPdHK

    Score
    1/10
    behavioral12

    • Target

      wPalw_cwukn9gn/About/en-US/AuditSettings.adml

    • Size

      1KB

    • MD5

      71075fce08402095aeafbe57962a1f5b

    • SHA1

      f76fae255aa5454217fe973c4a8035ec9005b923

    • SHA256

      6928faad9624bbf4c74f6c138496a4c6ae8d04919c3de9591568300c1dd39e59

    • SHA512

      9df7480e584b16d1b504e2503b3c4c8422efc2fa37d9a4aceb8a7aea0561c0d73e8e73cb21fea20c6ec3bbbcb715c155efda7b8e38b7b448bcda5db10d773de4

    Score
    1/10
    behavioral13

    • Target

      wPalw_cwukn9gn/About/en-US/AutoPlay.adml

    • Size

      4KB

    • MD5

      935c602dad3f4335bd16c269e66dbfaa

    • SHA1

      3df4dc6d55af20f0593d807fb4fdefb23cc3355a

    • SHA256

      8773998440c8d534fa69833174d05d09088f07e6e5c0e41d7c04a229c7903879

    • SHA512

      05abffc0ce836f7438bc711a9d2b5ceb8f3f1c48be2ac9c1a91d286aed6fc4c8d740ae802dcd2cc65d066972dc8daa84ad8a10fa775d66cb5f3de34688d975ec

    • SSDEEP

      96:LeD5pmCRsKp7RqiPKhB3a1jejcM64iVDJaqV:ELRRp74a1AbodJ7

    Score
    1/10
    behavioral14

    • Target

      wPalw_cwukn9gn/About/en-US/Biometrics.adml

    • Size

      4KB

    • MD5

      d8d0bc5b42ef7ea543f6a433fdd55e29

    • SHA1

      c206420f5f08f178330c5bcddbbd22ba92f32f2d

    • SHA256

      4cf64ea0a9d948e8779813e0b785e12765598d8ed2c5823bf0fcfe454cb66d6a

    • SHA512

      2aa9481541fe0ed55da25a0a6e36f2d1603ef0387f52a60b42938bd98e338cb52e261cf990bf0465f134333cbd231d05e43a412a75d0a4860b7990c92585ee5e

    • SSDEEP

      96:oD5pmJxp5A8M9DIn0C3ppMdiD+QPCRyVl4qCV:+Gp5lM9M3ppUiCQPCs4P

    Score
    1/10
    behavioral15

    • Target

      wPalw_cwukn9gn/About/en-US/Bits.adml

    • Size

      31KB

    • MD5

      f6e746cd330a73b928c14770d9645bd0

    • SHA1

      7eded72eb36035a93af3943b6f5f330082307968

    • SHA256

      80d730b14bbb66b29360c108c8a57e09aa33e57dc1c9eaffcad5d66b3ef98c31

    • SHA512

      6295e9062941daedcf4bf3e5beba03010afde880f43e95052dbce3fdb485c92c73b0cb57e9374f691c79fa43044cfcbbdb92cde189e1c3aff90024b19b525f1e

    • SSDEEP

      768:Uw9+2pWqx80t3lMsQAZ5nV7smu7CQ62TDw4p2L:H+2Lx8Q3lLB+wx

    Score
    1/10
    behavioral16

    • Target

      wPalw_cwukn9gn/About/en-US/CEIPEnable.adml

    • Size

      1KB

    • MD5

      cb1e5dcf00dd4aa26834f7f02ea4aa0e

    • SHA1

      eaebb6a75fe6aeec3afe914df9dad9bcb08702c1

    • SHA256

      7651f59a99180721f39b02391bb51d382b39dbcd15e3e2245b10778b7a8a5d95

    • SHA512

      bc84bd30e99735495803360f061088334736caf9d7ae1c5fad9c484d949991f09c59d6fb818de35f6328e94fedd63c2c6d80d63acdf616bf936762cbf656ae3a

    Score
    1/10
    behavioral17

    • Target

      wPalw_cwukn9gn/About/en-US/COM.adml

    • Size

      1KB

    • MD5

      33757eac0441251ace18bd74ff8e2bd0

    • SHA1

      b9dbc0b240cf803afacb5d8d9ad26e39b757b04b

    • SHA256

      44fa3b1e818ef70305ad41012d78cf140851ec0949d4f2457f60c295e31c8edc

    • SHA512

      5fb7bd40c37eab269c7e9cf72efb29d6a6a2ef76db29dadd628866143a15fcee46c865be54c66d7c6ade13766ff1a3028912bdf8be05f1a6cd69d254431180c2

    Score
    1/10
    behavioral18

    • Target

      wPalw_cwukn9gn/About/en-US/Camera.adml

    • Size

      1KB

    • MD5

      9beddf4f0329a7e8fded024215256a25

    • SHA1

      c1c23beae0ac27815e83854e4d278f0a4fa69f7d

    • SHA256

      983b1f1fcfcfde773d5a98c32af1a91a950da605954d7df211e72a2eba0626f3

    • SHA512

      51da702eff5f1e74fe6c07482098d17f06b08eeabc2f53dd090b9ebe530c8821390619eb98cfd2b9c1e2065cd2930ce1bfeaca00d0ad8125bd36c01e7c5e6f33

    Score
    3/10
    behavioral19

    • Target

      wPalw_cwukn9gn/About/en-US/CipherSuiteOrder.adml

    • Size

      3KB

    • MD5

      8a30203812d3235f92a393f8188d37ca

    • SHA1

      960879ff5fd3cc4981872838f69e086a9eb9d870

    • SHA256

      664129670a908d001495c922c9874e6ce121056799731f49f7b00bcc29a1e51a

    • SHA512

      54cfa09c8e4bb131ef12d0c7aace104fcde3eaeebdd868700c69539d63da1bcb8776525e75164e9470ed91f5822702d45de257d4ff70a8e82b7da0ddbfc65767

    Score
    1/10
    behavioral20

    • Target

      wPalw_cwukn9gn/About/en-US/CloudContent.adml

    • Size

      10KB

    • MD5

      e5d37a590d6027f64d2b8d7ba8034315

    • SHA1

      61305ec1023b4c75afef255a9c58384747c59f55

    • SHA256

      1b11582634ad0964671f98e74569af2470084d09da63cb6b79dc030d83929899

    • SHA512

      3be5bbdb4d5731971ee84a7ee465f4f77708da6b0958edbeb309eb7770c1dbfdae2bb3ad189ede3f33408e278cad6887d715ff8700e56d6492c72dfda48aa770

    • SSDEEP

      192:0ehYlyrsQHBAr0g6lC/pdhs1ay12jmd2DJXrHpm:bvHBQ0g/3moDC

    Score
    1/10
    behavioral21

    • Target

      wPalw_cwukn9gn/About/en-US/Conf.adml

    • Size

      10KB

    • MD5

      797657fcfbc025f92f896b0095d1f6e4

    • SHA1

      f357f8b9a9671f711eae5beb7759a2ef73b953e9

    • SHA256

      032f6bb5fba082ca24ea70f6cbdc25e913fd43b68a44582ab30aeb29509fc2ed

    • SHA512

      9c90fee9737a7f66cd50b43c30a2ba05dc861a76618612dc744f7075d3296dde577589060d3cc5779e44ca14add42502420dcdf9a68825817795fc89418847dd

    • SSDEEP

      96:LeD5pmrrC2ZHEU5p5a4LH/+3SenetLKZHtpeL3DKTGbpKPKryy6JI5oyvr5UV:ESrC2RlFagcSenetKZHtOzrKPKrB5xj+

    Score
    1/10
    behavioral22

    • Target

      wPalw_cwukn9gn/About/en-US/ControlPanel.adml

    • Size

      9KB

    • MD5

      3b710403f34803d32e3c7bd569a8c0eb

    • SHA1

      5507555abe39ed75842f0a77c84844bba8ebd580

    • SHA256

      ac195f25b5e64a64d4a6713f24b9e608de6401db013711139afc88f9e760f86a

    • SHA512

      56d01ae113d2b3c0b4f3d64fc43a1465b47699b2ba9706ae1b0c205ba0d3fd7d5ce804e01e8843a227a16ca54e3352dda90cf3226e762acf8aa166554e00ffdf

    • SSDEEP

      192:EXx19axpuHm52t16W7WW7p4Xxt4Hd1KSt1bHsZWtnv0xb:+xzaxEHU2tx7rMxGHdxbsZcv0xb

    Score
    1/10
    behavioral23

    • Target

      wPalw_cwukn9gn/About/en-US/ControlPanelDisplay.adml

    • Size

      21KB

    • MD5

      312a76dde47766bbf89bdf63f6a1f5f9

    • SHA1

      141bef7e9012e58dba870d864c3afba28f75046b

    • SHA256

      814d0cf2bb01bde499040d928dbe20e134ca845db2029e64efc16175b571ad9d

    • SHA512

      52ac4e645a10eec7db7ac9736b59740b85a2e23df79ab1edf5197a55ce0270698f98a8cc6d3c21443fd8201a652e85eb2a177933358aa6f67978a653e29ad547

    • SSDEEP

      384:VmRyKGkSDgF+vXDtchtrWzsbHX92Nx9LbzUB1E4RRN0:VmRXTCrvXDWrWziN2dUB1fRi

    Score
    1/10
    behavioral24

    • Target

      wPalw_cwukn9gn/About/en-US/Cpls.adml

    • Size

      1KB

    • MD5

      3a236d3ed9a6eae336de47bd71132d58

    • SHA1

      621c59891b91951f2e863eefea2d8310fb5125e3

    • SHA256

      ef075f5436a4117c29f2d6689a8ed6acc3ba22eafbdeea20c2349dba5cfe1f33

    • SHA512

      862aabb60effac016188cf56bb6ec48f7e4f6847b4a1a4a525c1fd93daa0269e0cb02dc8362f5b3029f817d1096b8c5bb48fa1717fe4084e2a99cde13a3ce573

    Score
    1/10
    behavioral25

    • Target

      wPalw_cwukn9gn/About/en-US/CredSsp.adml

    • Size

      21KB

    • MD5

      ea7d6bb785360188f78fbc860538fb65

    • SHA1

      839a970c4ac5af7bc61197d6761ea6be8dc2f5b6

    • SHA256

      024548cd91070bee38128fb2b008a7de2db93a30662da6fd09c386c4869ce552

    • SHA512

      a5d110e846371d625aab52662c6f491ac2748277caaed4d31ff048bf21860b59f37feb9cf3ce6e2d132708b3d6f63427e3fc073dbee6d2b6837c8a765337b574

    • SSDEEP

      192:EYLfqDwf4tdJ11wpL9uiansm9cjoOu0mWqYhMQfsY:9qtVPaxu5mUFDET

    Score
    1/10
    behavioral26

    • Target

      wPalw_cwukn9gn/About/en-US/CredUI.adml

    • Size

      3KB

    • MD5

      7cb58d040cbbef1d2ad7a3918f1033fd

    • SHA1

      fd0a662deca6a3c3ac3997f2266be05957403903

    • SHA256

      f99521ef3cd4af8953a5c241f120d98e693384a52ca2f6d6fa2cf8cdfb54e050

    • SHA512

      72272debcaa72caf55de05574629fe0cbcf2801e431d2f35b55af44663d4ad34ebf1adcc409409d2e4a30934b8aa9e7da104246c91ba34366997db8c44af1499

    Score
    1/10
    behavioral27

    • Target

      wPalw_cwukn9gn/About/en-US/CredentialProviders.adml

    • Size

      7KB

    • MD5

      3fb4747f64faa7c1d61bb2429b0f069f

    • SHA1

      e397a9995ba79fe50154edb7f0ca8bb007500550

    • SHA256

      669f78f759ffe924d0cd2acc9c73f81e56a93020c8eefa6a0d1eae25a967836b

    • SHA512

      674abf4a0a2584c1aae4f18e8c6dd81c7e1617f4efc4809c53e79b4ed1dbd2e6496ae16b361b69901ed0a3affa435b044e13998a72472ae72b350f8c426c8422

    • SSDEEP

      192:Ejznn5XkJcx1fdzcfglTSxLSxoglbnhf7oy7wT:wnlNdxc

    Score
    1/10
    behavioral28

    • Target

      wPalw_cwukn9gn/About/en-US/CtrlAltDel.adml

    • Size

      3KB

    • MD5

      8eb6cbecfcfb7fb15e453e235713f0d2

    • SHA1

      37170ba6139bd471c4121ed7747e8c9544e64e4a

    • SHA256

      23eaf2144b343acce5ec33dfb0363ba5b53e1ed8f5e0557f7597f02c1a659b0c

    • SHA512

      f3b96c2721592e9c5cd8caf20daccae170b46bdbbbd24d4a6d1acc3ca3d10bfa9ac23da2b5b3f9cf7d9f7918236c1c686918bb392595c634e97b56070aede007

    Score
    1/10
    behavioral29

    • Target

      wPalw_cwukn9gn/About/en-US/DCOM.adml

    • Size

      4KB

    • MD5

      7df9e61d5f72660a48741a9d1ae6df2a

    • SHA1

      a623bd2021eaa8863519e110e2c4d141d68e6dee

    • SHA256

      bd0e69bf353115e23b4344875da15df78bd4adf676eeab35aed30a21c129ebed

    • SHA512

      726fc2bd5444e1791811c9f39b3b535d155aa0ba2ac8b50f7a8b6faf48e7bedbd542c96c701a1cd58b1c89b89da04d9c175e9ccde70da27c92e073e570138dd1

    • SSDEEP

      96:LeD5pmc4qzQuQ+kCO+QW9JvqIiErBAqHPkGitHqEJw2mL8ykL3/NBV:El4qE9+kCOtW9dqIiErBAgPk/tKEJw2D

    Score
    1/10
    behavioral30

    • Target

      wPalw_cwukn9gn/About/en-US/DFS.adml

    • Size

      1KB

    • MD5

      59649458234fa8ec0fa1ccf6d1a1f000

    • SHA1

      fa84dc8c633ac66d93c2cc4ca82973690cc01b06

    • SHA256

      7c621bdfa9aafbb72c6e3eaa6bd9dadb9b87b76ff3085c3ab85f94a4ba74148b

    • SHA512

      3dac7345cdf6e474ec6550890d2581e97ceccbdf3d6da446d0b4051600b81e66725e20e3905fc8ed051e00ae74b7899ecec073c828e776fb664731218f88e528

    Score
    1/10
    behavioral31

    • Target

      wPalw_cwukn9gn/wPalw_cwukn9gn.exe

    • Size

      650.4MB

    • MD5

      be125b2d6637b8687ac81728ff858c78

    • SHA1

      630ec4e286193b311d68c3d22f4af9cdd3bf4a8e

    • SHA256

      e9c3570501df35a3e7365834b8762141730bef619bd754d73b9ac14aa95fd997

    • SHA512

      2a973f3d280441eb3432cbcac74b948c46e41e99034260cd0396f7957f1777b68c1079ab15abb95a6fcdec531c93eafc34de378b03b1d544298e5ca98f942a11

    • SSDEEP

      196608:JLlyJmPhoTZIn7nWhewbxUzcv2+oqm+wE:NhKWSVmf+5mU

    Score
    7/10
    discoveryspywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
1/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

Score
1/10

behavioral4

Score
1/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
3/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

discoveryspywarestealer
Score
7/10