General
-
Target
BlueStacks10Installer_10.25.0.1001_native_ce685bd702de7b1b0e37d173f92c6c2f_MDs1LDM7MTUsMTsxNSw0OzE1.exe
-
Size
910KB
-
Sample
240311-vy3lysbc95
-
MD5
c2926fa2deca63bde88cc201b12730db
-
SHA1
0a728540ef83f36554935403502875ed30d8f0fe
-
SHA256
9bac38d897b4f8cbaa3bd89ec459833007f2757759ea1849c2d5a4ec4cd38823
-
SHA512
97f153eaff3f9eb996f26807380fef72692d4b68250e6fac8f2c8b897fa96768a975a05a0b99926a6c9a4bc8969203af892df0d16d4f5f1e66813ba4f709f4ff
-
SSDEEP
24576:DivtCXWeGKL9Txt9OkcXsbpmBKm6HOSj/RXk:GtCXWP+vz5ccbABKfuS9k
Malware Config
Targets
-
-
Target
BlueStacks10Installer_10.25.0.1001_native_ce685bd702de7b1b0e37d173f92c6c2f_MDs1LDM7MTUsMTsxNSw0OzE1.exe
-
Size
910KB
-
MD5
c2926fa2deca63bde88cc201b12730db
-
SHA1
0a728540ef83f36554935403502875ed30d8f0fe
-
SHA256
9bac38d897b4f8cbaa3bd89ec459833007f2757759ea1849c2d5a4ec4cd38823
-
SHA512
97f153eaff3f9eb996f26807380fef72692d4b68250e6fac8f2c8b897fa96768a975a05a0b99926a6c9a4bc8969203af892df0d16d4f5f1e66813ba4f709f4ff
-
SSDEEP
24576:DivtCXWeGKL9Txt9OkcXsbpmBKm6HOSj/RXk:GtCXWP+vz5ccbABKfuS9k
Score8/10-
Stops running service(s)
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Downloads MZ/PE file
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-