Extracted

• • Target

    69ee540d78678ca031d4b00626415ca52f22f57f96c4504203490e9234f60b55

  • Size

    128KB

  • MD5

    2a82f35e7a79350c0a1257358130c4e3

  • SHA1

    b57cfc659efa353f98b379446879607e1557899a

  • SHA256

    69ee540d78678ca031d4b00626415ca52f22f57f96c4504203490e9234f60b55

  • SHA512

    a839742a450b9baf2dcd731592bc4cedd4af4271912fbc4711f87ef091fe9ea464dfbed2ba07b28ea156c029a36eb40b70c8093759593644ebcd6b822844236e

  • SSDEEP

    3072:9rn4CuDcpMkymV5x0RCVZeeUebHCDYp61FmHhe8pTAV02DtEb:9r4Ndkf5xUCXUXDY8TDtEb

  Score

  10^/10

  allcomestealer

  • Allcome

    A clipbanker that supports stealing different cryptocurrency wallets and payment forms.

    stealerallcome

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  behavioral1behavioral2