General
-
Target
mistsploit.exe
-
Size
17.5MB
-
Sample
240423-a7teesae2x
-
MD5
238a4d03a640d79becc8c842fd94bda9
-
SHA1
f5a9496a12b68c7b372929480605cf2c98479bdc
-
SHA256
54c62308e913a7bce9560f9e9586836b87d1ccad25b1f45f8b787584191f3096
-
SHA512
e648b9ce90c59a8a1855cc7feb9a359bcd1e2323ca695f137083c84c28b2f19fcfbb294a68652e4f30bd6bc9cef047254ee6ab0dd91a04bcae3cd8fd5d9f7fc5
-
SSDEEP
393216:vo9D7E9QdXGpix93kh2Jp5M5BreY3G2Q0ooKRKell:Q9cQ+ix93khRF2v0yRll
Malware Config
Targets
-
-
Target
mistsploit.exe
-
Size
17.5MB
-
MD5
238a4d03a640d79becc8c842fd94bda9
-
SHA1
f5a9496a12b68c7b372929480605cf2c98479bdc
-
SHA256
54c62308e913a7bce9560f9e9586836b87d1ccad25b1f45f8b787584191f3096
-
SHA512
e648b9ce90c59a8a1855cc7feb9a359bcd1e2323ca695f137083c84c28b2f19fcfbb294a68652e4f30bd6bc9cef047254ee6ab0dd91a04bcae3cd8fd5d9f7fc5
-
SSDEEP
393216:vo9D7E9QdXGpix93kh2Jp5M5BreY3G2Q0ooKRKell:Q9cQ+ix93khRF2v0yRll
Score7/10-
Drops startup file
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Legitimate hosting services abused for malware hosting/C2
-