General
-
Target
dbced253c8e99ea2d383c7e5371fe5f62fed611d7619dd0d61d837bd8162d102
-
Size
2.4MB
-
Sample
240523-pfxebsgh78
-
MD5
30a4b955f3b5c8e828f6eef25f4b9592
-
SHA1
1ff85cff1ffd7e49e85fa2e164b2a2d722cc18bc
-
SHA256
dbced253c8e99ea2d383c7e5371fe5f62fed611d7619dd0d61d837bd8162d102
-
SHA512
89feb548fc5f0f1ebaf5d1db7f89f1f42b65c6c068dcbf53ec81ac5c9958aa415cd5f6ef936c858af41d5d5f784b1be479fc474ef68bd93093e2f966fda5ea55
-
SSDEEP
49152:jxIRJF1HL+VdX68kUWJtTF+TxMoxc1TU+j+dAzGwlrh:jEJF16dX68dWtIuoITsdZ
Static task
static1
Behavioral task
behavioral1
Sample
dbced253c8e99ea2d383c7e5371fe5f62fed611d7619dd0d61d837bd8162d102.exe
Resource
win10v2004-20240508-en
Malware Config
Extracted
stealc
Targets
-
-
Target
dbced253c8e99ea2d383c7e5371fe5f62fed611d7619dd0d61d837bd8162d102
-
Size
2.4MB
-
MD5
30a4b955f3b5c8e828f6eef25f4b9592
-
SHA1
1ff85cff1ffd7e49e85fa2e164b2a2d722cc18bc
-
SHA256
dbced253c8e99ea2d383c7e5371fe5f62fed611d7619dd0d61d837bd8162d102
-
SHA512
89feb548fc5f0f1ebaf5d1db7f89f1f42b65c6c068dcbf53ec81ac5c9958aa415cd5f6ef936c858af41d5d5f784b1be479fc474ef68bd93093e2f966fda5ea55
-
SSDEEP
49152:jxIRJF1HL+VdX68kUWJtTF+TxMoxc1TU+j+dAzGwlrh:jEJF16dX68dWtIuoITsdZ
-
Detect Vidar Stealer
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-