matiex | 7986c14ae93e53bf4616d1c6ccdcc6e882974fb190892d9e597d22d36622d9d8 | Triage

Submit
Reports

Overview

overview

Static

static

New Order.exe

windows7_x64

New Order.exe

windows10_x64

Sharing

General

Target

New Order.exe
Size

639KB
Sample

210125-pzjmdlb4h2
MD5

cfbd31988f29e73136639cb2348eb634
SHA1

6597d7de6b4377d15482f8ac236363c7775439d4
SHA256

7986c14ae93e53bf4616d1c6ccdcc6e882974fb190892d9e597d22d36622d9d8
SHA512

4665ad7c6223429e7cdb6e4c4b3f18a23f8fade93de5b8dceddf75bb327ea84e8708f5f37b4362cd05c6e1f9dd85242d307c9c9c83cc7dbfb28dcdef8d3fa3a2

Score

10^/10

matiex keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

New Order.exe

Resource

win7v20201028

matiex keylogger stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

New Order.exe

Resource

win10v20201028

matiex keylogger stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Credentials

Protocol: smtp
Host:
mail.cleo2solutions.com.au
Port:
25
Username:
[email protected]
Password:
Enter@123

Extracted

Family

matiex

Credentials

Protocol: smtp
Host:
mail.cleo2solutions.com.au
Port:
25
Username:
[email protected]
Password:
Enter@123

Targets

- Target
  
  New Order.exe
- Size
  
  639KB
- MD5
  
  cfbd31988f29e73136639cb2348eb634
- SHA1
  
  6597d7de6b4377d15482f8ac236363c7775439d4
- SHA256
  
  7986c14ae93e53bf4616d1c6ccdcc6e882974fb190892d9e597d22d36622d9d8
- SHA512
  
  4665ad7c6223429e7cdb6e4c4b3f18a23f8fade93de5b8dceddf75bb327ea84e8708f5f37b4362cd05c6e1f9dd85242d307c9c9c83cc7dbfb28dcdef8d3fa3a2
Score

10^/10

matiex keylogger stealer
- Matiex
  Matiex is a keylogger and infostealer first seen in July 2020.
  stealer keylogger matiex
- Matiex Main Payload
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

matiexkeyloggerstealer

behavioral2

matiexkeyloggerstealer

© 2018-2024

Terms | Privacy