Extracted

• • Target

    Z-Launcher-GPS5.exe

  • Size

    1.6MB

  • MD5

    e6db71cc80920480219f16c0c54013c7

  • SHA1

    4c7370868e5187d5d017c69df552dd809b76c1a2

  • SHA256

    5b9a78809c6718019832322023e94982761032adb51e1a44ba139d4f63369542

  • SHA512

    0b229b4b3e2cac3cd25748af0cbcc37840825b2d4f9d098e97e183f2f763fe240d0df89ef98a8c19c32e4cee61145d9e6f478598b6598384b6035ab714ebce55

  • SSDEEP

    49152:TkTq24GjdGSiqkqXfd+/9AqYanieKdsfM:T1EjdGSiqkqXf0FLYWC

  Score

  10^/10

  stealeriumcollectiondiscoverypersistenceprivilege_escalationspywarestealer

  • Stealerium

    An open source info stealer written in C# first seen in May 2022.

    stealerstealerium

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Accesses Microsoft Outlook profiles

    collection

  • Legitimate hosting services abused for malware hosting/C2

  • Looks up external IP address via web service

    Uses a legitimate IP lookup service to find the infected system's external IP.

  behavioral1behavioral2behavioral3behavioral4