General

  • Target

    ee621d8e9638c6f298c5d323a7eb5138f6f9c656f8125c692c602422098683af

  • Size

    79KB

  • Sample

    210913-net25sdee3

  • MD5

    2cd5c4ee42e61a0f770d43f8f9ca558f

  • SHA1

    ac2878f25ce42de9d73278a2fecf73565b2f4dfe

  • SHA256

    ee621d8e9638c6f298c5d323a7eb5138f6f9c656f8125c692c602422098683af

  • SHA512

    1ca622e5f06b3fb299ddb7658251f580768bc9e45a1ac0a228a7ce1c318dfbd8103eb155137e8c8fb6255b93cbc4fa49f0540b321add9d3a6b82bc776ae1197d

Malware Config

Targets

    • Target

      ee621d8e9638c6f298c5d323a7eb5138f6f9c656f8125c692c602422098683af

    • Size

      79KB

    • MD5

      2cd5c4ee42e61a0f770d43f8f9ca558f

    • SHA1

      ac2878f25ce42de9d73278a2fecf73565b2f4dfe

    • SHA256

      ee621d8e9638c6f298c5d323a7eb5138f6f9c656f8125c692c602422098683af

    • SHA512

      1ca622e5f06b3fb299ddb7658251f580768bc9e45a1ac0a228a7ce1c318dfbd8103eb155137e8c8fb6255b93cbc4fa49f0540b321add9d3a6b82bc776ae1197d

    • ElysiumStealer

      ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks