General
-
Target
74114aed3061759925fb942ea586531764658caa91fff4e0e6f870cbda73102d
-
Size
276KB
-
Sample
240505-kfnpzafe85
-
MD5
fb5fdc1d6a219936f672ce1a0be9b617
-
SHA1
26b9acd0bc4ce7e0ec39a20556329533ef2c4605
-
SHA256
74114aed3061759925fb942ea586531764658caa91fff4e0e6f870cbda73102d
-
SHA512
6f06eae9cdb13ee84c3850fe631a83026c43025d353d08c8cb6edda0239343b82f988b81482fb63d9881165db5f4851269a8a7365a5fe59ae20499fb06e22839
-
SSDEEP
3072:B4BUWKsILevyF0TOgq2nnfJtM58Db6dlN9nUzz6capA2JTkH++/5WzmGa+UEKWa4:Hsb6qnnxOjznOypRBkH+56Ga+U/Lb
Static task
static1
Behavioral task
behavioral1
Sample
74114aed3061759925fb942ea586531764658caa91fff4e0e6f870cbda73102d.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
stealc
http://185.172.128.151
-
url_path
/7043a0c6a68d9c65.php
Targets
-
-
Target
74114aed3061759925fb942ea586531764658caa91fff4e0e6f870cbda73102d
-
Size
276KB
-
MD5
fb5fdc1d6a219936f672ce1a0be9b617
-
SHA1
26b9acd0bc4ce7e0ec39a20556329533ef2c4605
-
SHA256
74114aed3061759925fb942ea586531764658caa91fff4e0e6f870cbda73102d
-
SHA512
6f06eae9cdb13ee84c3850fe631a83026c43025d353d08c8cb6edda0239343b82f988b81482fb63d9881165db5f4851269a8a7365a5fe59ae20499fb06e22839
-
SSDEEP
3072:B4BUWKsILevyF0TOgq2nnfJtM58Db6dlN9nUzz6capA2JTkH++/5WzmGa+UEKWa4:Hsb6qnnxOjznOypRBkH+56Ga+U/Lb
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-