General
-
Target
6f95052fd82dd3768ee3680d6c23fe11caaa2ac7c6d1076bd4c909d7794e0b9e
-
Size
7.3MB
-
Sample
241014-we39taxgmf
-
MD5
c95e0571d07b9093c1c233cfea265f7c
-
SHA1
f6dd3cc37f58bda31b4d597c6115304419118643
-
SHA256
6f95052fd82dd3768ee3680d6c23fe11caaa2ac7c6d1076bd4c909d7794e0b9e
-
SHA512
481273868a85c6ff32db15e876f00f07fdf832c16d0ae96a0e532943404366e7e289fb1f68e8c4f42750c4ce7245691dfe29ec13e40e53370515640b5e3808fb
-
SSDEEP
49152:muwlxhakfYdCwMfpeE5mrB7ORaoUp8Fa:mlxIUQIhXmiaoUka
Malware Config
Targets
-
-
Target
6f95052fd82dd3768ee3680d6c23fe11caaa2ac7c6d1076bd4c909d7794e0b9e
-
Size
7.3MB
-
MD5
c95e0571d07b9093c1c233cfea265f7c
-
SHA1
f6dd3cc37f58bda31b4d597c6115304419118643
-
SHA256
6f95052fd82dd3768ee3680d6c23fe11caaa2ac7c6d1076bd4c909d7794e0b9e
-
SHA512
481273868a85c6ff32db15e876f00f07fdf832c16d0ae96a0e532943404366e7e289fb1f68e8c4f42750c4ce7245691dfe29ec13e40e53370515640b5e3808fb
-
SSDEEP
49152:muwlxhakfYdCwMfpeE5mrB7ORaoUp8Fa:mlxIUQIhXmiaoUka
Score10/10-
CryptBot
CryptBot is a C++ stealer distributed widely in bundle with other software.
-
Detects CryptBot payload
CryptBot is a C++ stealer distributed widely in bundle with other software.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-