General
-
Target
Chemicals Genaral presentation.exe
-
Size
284KB
-
Sample
200630-y3y9tpza3s
-
MD5
9ef7a2253f269a14bf170f4a60a97538
-
SHA1
3e92a77ad4e208a678d5f0ccdd5bba0a9c08ecbb
-
SHA256
2b8072cf7b0c14a4f9c662d66cf5f6a64c7defb73fb6b0fcc9cd5d32ff004101
-
SHA512
41d1c0ffc87401c59c072126dd47de7cd2839fbd032c1c37781edac2c67d6ef818f3a86d42418a72afa2f447127a64e9a093ca9d8052557225843ba223650fda
Static task
static1
Behavioral task
behavioral1
Sample
Chemicals Genaral presentation.exe
Resource
win7
Behavioral task
behavioral2
Sample
Chemicals Genaral presentation.exe
Resource
win10v200430
Malware Config
Targets
-
-
Target
Chemicals Genaral presentation.exe
-
Size
284KB
-
MD5
9ef7a2253f269a14bf170f4a60a97538
-
SHA1
3e92a77ad4e208a678d5f0ccdd5bba0a9c08ecbb
-
SHA256
2b8072cf7b0c14a4f9c662d66cf5f6a64c7defb73fb6b0fcc9cd5d32ff004101
-
SHA512
41d1c0ffc87401c59c072126dd47de7cd2839fbd032c1c37781edac2c67d6ef818f3a86d42418a72afa2f447127a64e9a093ca9d8052557225843ba223650fda
Score10/10-
Adds Run entry to policy start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run entry to start application
-
Suspicious use of SetThreadContext
-