Extracted

• • Target

    INJECTOR.exe

  • Size

    2.2MB

  • MD5

    9a56bbf26768ca638459c05917582c47

  • SHA1

    d0fa3ce725b43fa60392995402b714b3b0b9703b

  • SHA256

    d02a9323b34a30cb744222b54b5a8ef26d19d9b6f781aac6a7a01c7d71cb28cd

  • SHA512

    61c27d5d6c116f7510bbb5dbc89b98c3b35f452c6503b12362ccd95a78a5ae181166455fcba099ba2ee5ef7c1f73c876a7623dea04ea0161ddd8125250b322c3

  • SSDEEP

    24576:OOfsfKozBKHAhRh3KzPSA7R7Bt28SVSVlzyQOQZ9IEb68vL4R+2pYJeCYMXABtH:PBozBdhEV7q8bOQnIFWY+3Je0wf

  Score

  7^/10

  discoveryspywarestealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2