General
-
Target
2067bf2e9d92710e6800d8f92c56d5d8831daa9b66190d1b02afa445abf80b11
-
Size
1.8MB
-
Sample
240523-fkc2taed7v
-
MD5
6a1abc77d2ae05a0bfe64a5e95f7ea0c
-
SHA1
15153cd0ce8e5b61632594d2c8b339d2275d03f1
-
SHA256
2067bf2e9d92710e6800d8f92c56d5d8831daa9b66190d1b02afa445abf80b11
-
SHA512
125bdbbc37227e5236a4e6fd0cc3797714134b2b22e84709d785f31043bd1724af31008077f6f0cec69e9d8f02d2f2a9182a63c62fd1d6ed05881e933da9aa73
-
SSDEEP
24576:FBfuZfeq6s9O6hTdtTF+TxMoxQH1Tj4wtjYZH1DmoYYzi3WH45yv+OueSJhm9e:F7qFvJtTF+TxMoxc1TU+j+dAzGwlrh
Static task
static1
Behavioral task
behavioral1
Sample
2067bf2e9d92710e6800d8f92c56d5d8831daa9b66190d1b02afa445abf80b11.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
stealc
Targets
-
-
Target
2067bf2e9d92710e6800d8f92c56d5d8831daa9b66190d1b02afa445abf80b11
-
Size
1.8MB
-
MD5
6a1abc77d2ae05a0bfe64a5e95f7ea0c
-
SHA1
15153cd0ce8e5b61632594d2c8b339d2275d03f1
-
SHA256
2067bf2e9d92710e6800d8f92c56d5d8831daa9b66190d1b02afa445abf80b11
-
SHA512
125bdbbc37227e5236a4e6fd0cc3797714134b2b22e84709d785f31043bd1724af31008077f6f0cec69e9d8f02d2f2a9182a63c62fd1d6ed05881e933da9aa73
-
SSDEEP
24576:FBfuZfeq6s9O6hTdtTF+TxMoxQH1Tj4wtjYZH1DmoYYzi3WH45yv+OueSJhm9e:F7qFvJtTF+TxMoxc1TU+j+dAzGwlrh
-
Detect Vidar Stealer
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-