General
-
Target
84076a0ce23011e5297ee8eaae9a143a4147323d72310c754a47c830e3268265
-
Size
42KB
-
Sample
250302-bwj72syzhv
-
MD5
58c42223615073a3f459d6fe19384bb1
-
SHA1
fde1de350936b0f4dbc2c0cc541a70ee1f18ccac
-
SHA256
84076a0ce23011e5297ee8eaae9a143a4147323d72310c754a47c830e3268265
-
SHA512
c5d2fad5d2d28e052080b88e20ae850fc2494ffc1144365e15eb3b9056844a7a51e6401cde632e669c0004cd51adf0ee679ee66ebcdb8ec566a68710ace78690
-
SSDEEP
768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6I1:e6q10k0EFjed6rqJ+6vghzwYu7vih9GB
Static task
static1
Behavioral task
behavioral1
Sample
84076a0ce23011e5297ee8eaae9a143a4147323d72310c754a47c830e3268265.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
84076a0ce23011e5297ee8eaae9a143a4147323d72310c754a47c830e3268265.exe
Resource
win10v2004-20250217-en
Malware Config
Extracted
blihanstealer
pomdfghrt
-
user_agent
Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; CIBA; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022)
Targets
-
-
Target
84076a0ce23011e5297ee8eaae9a143a4147323d72310c754a47c830e3268265
-
Size
42KB
-
MD5
58c42223615073a3f459d6fe19384bb1
-
SHA1
fde1de350936b0f4dbc2c0cc541a70ee1f18ccac
-
SHA256
84076a0ce23011e5297ee8eaae9a143a4147323d72310c754a47c830e3268265
-
SHA512
c5d2fad5d2d28e052080b88e20ae850fc2494ffc1144365e15eb3b9056844a7a51e6401cde632e669c0004cd51adf0ee679ee66ebcdb8ec566a68710ace78690
-
SSDEEP
768:ePyFZFASe0Ep0EpHZplRpqpd6rqxn4p6vghzwYu7vih9GueIh9j2IoHAjU+Eh6I1:e6q10k0EFjed6rqJ+6vghzwYu7vih9GB
Score10/10-
Blihanstealer family
-
Deletes itself
-
Executes dropped EXE
-
Adds Run key to start application
-