phoenixstealer | 3cc17e8a578397b8dad4299539f31925ea3777455d112dafbaf7df283c7cb11e | Triage

Analysis

max time kernel
4294178s
max time network
120s
platform
windows7_x64
resource
win7-20220310-en
submitted
19-03-2022 05:02

Sharing

Report Analysis Logs

General

Target

21214651.exe
Size

545KB
MD5

add658b878f56073cd43eaa869341400
SHA1

79083cfa2282242a3471c823f6480fea695aa56d
SHA256

3cc17e8a578397b8dad4299539f31925ea3777455d112dafbaf7df283c7cb11e
SHA512

90dc961eb0fde33fa4cdd199140620bdb47f0594697159e413e1bc70c151e5815162aa0dc183a22d2b27ea737478237f7ddda0fd201a222c4ab272d3bb8c0aae

Score

10^/10

phoenixstealer stealer

Malware Config

Signatures

PhoenixStealer
PhoenixStealer is an information stealer written in the C++, it sends the stolen information to cybercriminals.
stealer phoenixstealer

C:\Users\Admin\AppData\Local\Temp\21214651.exe
"C:\Users\Admin\AppData\Local\Temp\21214651.exe"
1⤵
PID:1452

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/1452-54-0x0000000074DE1000-0x0000000074DE3000-memory.dmp

Filesize
8KB

Download