a310logger | b3d0b8c065ad75dfd646829bc7c87735 | Triage

Sharing

General

Target

b3d0b8c065ad75dfd646829bc7c87735
Size

67KB
MD5

b3d0b8c065ad75dfd646829bc7c87735
SHA1

629655f03b356ad46ae106855eb004c7be7098c0
SHA256

61560f470822a249950e3d35574aae0ee9c93da31c1fd6f001c0cec97069a4fb
SHA512

81539089391fb7aad33450a37ab57ec4a13c544a70ead868bc89f4e5d3d81dd948b4ea82c9ba1a780e03dfee608839b6acf2868f0ff6c0fc0fd2ef2fd6cf766e
SSDEEP

768:Xb5fzfrnTjUzYZzZbvINP2hTlCio1cIBB6zTTCkvbIcwlwLHT1C4kh3ZsXULI9eN:L5bTnBIrio1cKeTDvbIcwqdUEPR+pR

Score

10^/10

a310logger stormkitty

Malware Config

Signatures

A310logger Executable 1 IoCs

resource	yara_rule
sample	a310logger

A310logger family
a310logger

StormKitty payload 1 IoCs

resource	yara_rule
sample	family_stormkitty

Stormkitty family
stormkitty

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3d0b8c065ad75dfd646829bc7c87735

Files

b3d0b8c065ad75dfd646829bc7c87735
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\12ETHGONE\Music\Chrome-Password-Recovery-master----working\Chrome-Password-Recovery-master\obj\Release\ChromeRecovery.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ