Extracted

• • Target

    0x00090000000167e3-13.dat

  • Size

    6.9MB

  • MD5

    973951ef7134a54ee9031e4f9c1c04d3

  • SHA1

    def129184ad6ad341f9cf08582db3ee664c6a2e0

  • SHA256

    112ba934300da8274f790013312034d142d090cc663d1c62073deba180b1e922

  • SHA512

    190d1fb6926b0a6410ce70fc20422d5487407d2137dd50ecec0585d8f062134255ca110377db4abdee0f1e5038f61dddca162628466782642d047554eebb21a4

  • SSDEEP

    98304:ipBnHb6a+Xp9/GLc3Svf6aRNjstE4Khyz8n:W76a23/GOGPAtvCG8n

  Score

  10^/10

  cryptbotdefense_evasiondiscoveryspywarestealer

  • CryptBot

    CryptBot is a C++ stealer distributed widely in bundle with other software.

    spywarestealercryptbot

  • Cryptbot family

    cryptbot

  • Enumerates VirtualBox registry keys

    defense_evasion

  • Downloads MZ/PE file

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2