General
-
Target
432f4077d2f9d7e37290e2baef855ed9943712c40808ba1394892c61275b57cc
-
Size
7.2MB
-
Sample
241010-b7ndvazbrj
-
MD5
eadf1731c7b0155cef6e7813007c73ca
-
SHA1
582c875ea0604fcac26a1535b0899fd7d36a4ca7
-
SHA256
432f4077d2f9d7e37290e2baef855ed9943712c40808ba1394892c61275b57cc
-
SHA512
05d0eed78f6fd8b6f6c85fac5ed5a4c4fcf80a92cfc3dd430595559af0ccd3374467f092a38d4a461523e86c029fa3d1d090be4e3a059e393b989d30637252f8
-
SSDEEP
49152:tl9PCVo4Rz+8/T8cijN3uD8SeYIPm5cLDDzAQJ5JZGWmSvloARBCOeun3H3k:ztoPrdiR3uD8SeYIP+cL
Malware Config
Targets
-
-
Target
432f4077d2f9d7e37290e2baef855ed9943712c40808ba1394892c61275b57cc
-
Size
7.2MB
-
MD5
eadf1731c7b0155cef6e7813007c73ca
-
SHA1
582c875ea0604fcac26a1535b0899fd7d36a4ca7
-
SHA256
432f4077d2f9d7e37290e2baef855ed9943712c40808ba1394892c61275b57cc
-
SHA512
05d0eed78f6fd8b6f6c85fac5ed5a4c4fcf80a92cfc3dd430595559af0ccd3374467f092a38d4a461523e86c029fa3d1d090be4e3a059e393b989d30637252f8
-
SSDEEP
49152:tl9PCVo4Rz+8/T8cijN3uD8SeYIPm5cLDDzAQJ5JZGWmSvloARBCOeun3H3k:ztoPrdiR3uD8SeYIP+cL
Score10/10-
CryptBot
CryptBot is a C++ stealer distributed widely in bundle with other software.
-
Detects CryptBot payload
CryptBot is a C++ stealer distributed widely in bundle with other software.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-