General
-
Target
7a1c767f7831557b1dc236f1d4e000c411609d06ce0e514395dd3840ae83235b
-
Size
276KB
-
Sample
240505-n6ndnscf56
-
MD5
76f63b90a5ba231e7339b4c8ccc9eba1
-
SHA1
2c98707616bd45b549d2091cd4afda3dbb4a6720
-
SHA256
7a1c767f7831557b1dc236f1d4e000c411609d06ce0e514395dd3840ae83235b
-
SHA512
747ec628a8297023ed61e01a64e1f17817b492b46226a805466bd65552dd143bdd020615b350130966fa096516c6e809f2d1b2b7f29a133b221ea8cc4e4f46d7
-
SSDEEP
3072:/BT/pMiIYor65twvUVhrIGzk0C5czN5Wmjtnrne5l:3Miq65twcEZ0eOr0
Static task
static1
Behavioral task
behavioral1
Sample
7a1c767f7831557b1dc236f1d4e000c411609d06ce0e514395dd3840ae83235b.exe
Resource
win10v2004-20240419-en
Malware Config
Extracted
stealc
http://185.172.128.151
-
url_path
/7043a0c6a68d9c65.php
Targets
-
-
Target
7a1c767f7831557b1dc236f1d4e000c411609d06ce0e514395dd3840ae83235b
-
Size
276KB
-
MD5
76f63b90a5ba231e7339b4c8ccc9eba1
-
SHA1
2c98707616bd45b549d2091cd4afda3dbb4a6720
-
SHA256
7a1c767f7831557b1dc236f1d4e000c411609d06ce0e514395dd3840ae83235b
-
SHA512
747ec628a8297023ed61e01a64e1f17817b492b46226a805466bd65552dd143bdd020615b350130966fa096516c6e809f2d1b2b7f29a133b221ea8cc4e4f46d7
-
SSDEEP
3072:/BT/pMiIYor65twvUVhrIGzk0C5czN5Wmjtnrne5l:3Miq65twcEZ0eOr0
-
Downloads MZ/PE file
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-