General
-
Target
ec415c2f2e62883ddc152112ecc8522216924c89d2b09d4acf1dda6fca6b0104
-
Size
48KB
-
Sample
250227-h55nnszwdz
-
MD5
7ee05f0d8c1cf24ffcaeb6a0d77ae584
-
SHA1
31fa36f248e8f7075a063a9ceeb61b5bbe4258fb
-
SHA256
ec415c2f2e62883ddc152112ecc8522216924c89d2b09d4acf1dda6fca6b0104
-
SHA512
4d4a15b384e204bd675b7517a60eb7fc220419f7006c12a5d213332c252c6e9aaa7301ce4648e40cd38b979a124b01002fc87987a343b8252c9c36d6b653d5c6
-
SSDEEP
1536:e6q10k0EFjed6rqJ+6vghzwYu7vih9GueIh9j2IoHAjUvJQ/johleHhvGhZchUXS:E1oEFlt6vghzwYu7vih9GueIh9j2IoHc
Static task
static1
Behavioral task
behavioral1
Sample
ec415c2f2e62883ddc152112ecc8522216924c89d2b09d4acf1dda6fca6b0104.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
ec415c2f2e62883ddc152112ecc8522216924c89d2b09d4acf1dda6fca6b0104.exe
Resource
win10v2004-20250217-en
Malware Config
Extracted
blihanstealer
pomdfghrt
-
user_agent
Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; CIBA; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022)
Targets
-
-
Target
ec415c2f2e62883ddc152112ecc8522216924c89d2b09d4acf1dda6fca6b0104
-
Size
48KB
-
MD5
7ee05f0d8c1cf24ffcaeb6a0d77ae584
-
SHA1
31fa36f248e8f7075a063a9ceeb61b5bbe4258fb
-
SHA256
ec415c2f2e62883ddc152112ecc8522216924c89d2b09d4acf1dda6fca6b0104
-
SHA512
4d4a15b384e204bd675b7517a60eb7fc220419f7006c12a5d213332c252c6e9aaa7301ce4648e40cd38b979a124b01002fc87987a343b8252c9c36d6b653d5c6
-
SSDEEP
1536:e6q10k0EFjed6rqJ+6vghzwYu7vih9GueIh9j2IoHAjUvJQ/johleHhvGhZchUXS:E1oEFlt6vghzwYu7vih9GueIh9j2IoHc
Score10/10-
Blihanstealer family
-
Deletes itself
-
Executes dropped EXE
-
Adds Run key to start application
-