General

  • Target

    acc44cc2950b1f22e96d38ec627bf1092a0d2c726da20ec1b3fafd5ece710846

  • Size

    80KB

  • Sample

    210913-net25sgfal

  • MD5

    5ced52ef1c1837c87ed28952075f7d9c

  • SHA1

    d591519679f607f829e915f3ff06dd1cb9c47f23

  • SHA256

    acc44cc2950b1f22e96d38ec627bf1092a0d2c726da20ec1b3fafd5ece710846

  • SHA512

    49b83b4189ad40bb12a04e4b88572d57287f0f9404f1c4b84239c03bbaa0a360c573703c09f404099c1b4ef6e7130ffc5bdb1aa8345428d9769c81b97b046b25

Malware Config

Targets

    • Target

      acc44cc2950b1f22e96d38ec627bf1092a0d2c726da20ec1b3fafd5ece710846

    • Size

      80KB

    • MD5

      5ced52ef1c1837c87ed28952075f7d9c

    • SHA1

      d591519679f607f829e915f3ff06dd1cb9c47f23

    • SHA256

      acc44cc2950b1f22e96d38ec627bf1092a0d2c726da20ec1b3fafd5ece710846

    • SHA512

      49b83b4189ad40bb12a04e4b88572d57287f0f9404f1c4b84239c03bbaa0a360c573703c09f404099c1b4ef6e7130ffc5bdb1aa8345428d9769c81b97b046b25

    • ElysiumStealer

      ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks