Overview

overview

10

Static

static

b4c2b203ec...67.exe

windows7_x64

10

b4c2b203ec...67.exe

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b4c2b203ec5ada40ca14fbee20de0b67.exe

  • Size

    221KB

  • Sample

    220114-k7cf1sfegr

  • MD5

    b4c2b203ec5ada40ca14fbee20de0b67

  • SHA1

    65563cc1c1d781991e378ec9e5d3578b0810d42d

  • SHA256

    2b697dedde68e57f4ce0031983226e1db30f0e41e52e5307f1bb1eddc87ae7e7

  • SHA512

    a905bbb8c6f33cdafefe5537b8705d29e69e4c3b559b396bf9a176478d3de453deaad5249fb7980ae113ff4d2c793be0f10f3d0c59056d0c5be55fce12573a03

Score
10/10
phoenixstealerstealer

Malware Config

Targets

    • Target

      b4c2b203ec5ada40ca14fbee20de0b67.exe

    • Size

      221KB

    • MD5

      b4c2b203ec5ada40ca14fbee20de0b67

    • SHA1

      65563cc1c1d781991e378ec9e5d3578b0810d42d

    • SHA256

      2b697dedde68e57f4ce0031983226e1db30f0e41e52e5307f1bb1eddc87ae7e7

    • SHA512

      a905bbb8c6f33cdafefe5537b8705d29e69e4c3b559b396bf9a176478d3de453deaad5249fb7980ae113ff4d2c793be0f10f3d0c59056d0c5be55fce12573a03

    Score
    10/10
    phoenixstealerstealer

    • PhoenixStealer

      PhoenixStealer is an information stealer written in the C++, it sends the stolen information to cybercriminals.

      stealerphoenixstealer

    • Downloads MZ/PE file

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks