Overview

overview

10

Static

static

10

1900-134-0...ry.exe

windows7_x64

1

1900-134-0...ry.exe

windows10-2004_x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1900-134-0x0000000000400000-0x0000000000429000-memory.dmp

  • Size

    164KB

  • Sample

    220209-zfm6rsbfhj

  • MD5

    af5dad3a2c7090b6138fa0387a9d621f

  • SHA1

    9820ae169e437e0f43c9271e00b8f8a58ecc4be7

  • SHA256

    db19b1fc37285cbd2a792c3fe965ea7e7cb669c14d694f258ebc0717ba01c0dd

  • SHA512

    612ec13accd94c8a41ce1b3b4675bbc2f4fcc58213478de72456ebf53ee9e5231a0bafaf01b41c985ad4ba9f871df9aaa9491b7e457f77426542a64a9966ae7d

Score
10/10
xloaderzqzwrat

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

zqzw

Decoy

laurentmathieu.com

nohohonndana.com

hhmc.info

shophallows.com

blazebunk.com

goodbridge.xyz

flakycloud.com

bakermckenziegroups.com

formation-adistance.com

lovingearthbotanicals.com

tbrservice.plus

heritagehousehotels.com

drwbuildersco.com

lacsghb.com

wain3x.com

dadreview.club

continiutycp.com

cockgirls.com

48mpt.xyz

033skz.xyz

Targets

    • Target

      1900-134-0x0000000000400000-0x0000000000429000-memory.dmp

    • Size

      164KB

    • MD5

      af5dad3a2c7090b6138fa0387a9d621f

    • SHA1

      9820ae169e437e0f43c9271e00b8f8a58ecc4be7

    • SHA256

      db19b1fc37285cbd2a792c3fe965ea7e7cb669c14d694f258ebc0717ba01c0dd

    • SHA512

      612ec13accd94c8a41ce1b3b4675bbc2f4fcc58213478de72456ebf53ee9e5231a0bafaf01b41c985ad4ba9f871df9aaa9491b7e457f77426542a64a9966ae7d

    Score
    4/10
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks