General
-
Target
88d45e633f5890422c9e3059069950e52d59de9ece10462cac8ab2499f3e0a52
-
Size
6.5MB
-
Sample
241013-afy6laygma
-
MD5
59ef2e4cb1ba2ecc1489e672fb932eba
-
SHA1
7625af5368aa52bed2a7763101d361e5642251de
-
SHA256
88d45e633f5890422c9e3059069950e52d59de9ece10462cac8ab2499f3e0a52
-
SHA512
a77df61522b0c8e2862b23c08bafdb48c0c858f3df65e5e20329712fa597d8e64aae6fe45579e2c642050ffe3067cfd3d8e289e1a64696cfd9cec3a5ef2f3e37
-
SSDEEP
49152:41e6ImKJWKDg2xKRfi/4w7AfmIa1WAR9fq6nDzDwg5J5pWGjrbQoYQBRy+ueXHww:4EmKJW4FQpnw7AfmIl0
Malware Config
Targets
-
-
Target
88d45e633f5890422c9e3059069950e52d59de9ece10462cac8ab2499f3e0a52
-
Size
6.5MB
-
MD5
59ef2e4cb1ba2ecc1489e672fb932eba
-
SHA1
7625af5368aa52bed2a7763101d361e5642251de
-
SHA256
88d45e633f5890422c9e3059069950e52d59de9ece10462cac8ab2499f3e0a52
-
SHA512
a77df61522b0c8e2862b23c08bafdb48c0c858f3df65e5e20329712fa597d8e64aae6fe45579e2c642050ffe3067cfd3d8e289e1a64696cfd9cec3a5ef2f3e37
-
SSDEEP
49152:41e6ImKJWKDg2xKRfi/4w7AfmIa1WAR9fq6nDzDwg5J5pWGjrbQoYQBRy+ueXHww:4EmKJW4FQpnw7AfmIl0
Score10/10-
CryptBot
CryptBot is a C++ stealer distributed widely in bundle with other software.
-
Detects CryptBot payload
CryptBot is a C++ stealer distributed widely in bundle with other software.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-