Analysis

  • max time kernel
    4294181s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20220310-en
  • submitted
    22-03-2022 05:10

General

  • Target

    43709081.exe

  • Size

    545KB

  • MD5

    ab329af4cd56fc459d0956cb80b53925

  • SHA1

    1c47ec8a3f614ea56d44b89f493f2bbf538ecd05

  • SHA256

    7e62498496831d872b6d34b51ec02d3fcc07bd4db925899e9a7026c70908a526

  • SHA512

    705bb8c94b6ea3213ff99e3d498bfd792304b6c6557594f8d4f00acb4ad64ff3bf2cb9213f9981363290f4032466cefea5ea334e361a4478bb7cf26de727ced5

Score
10/10

Malware Config

Signatures

  • PhoenixStealer

    PhoenixStealer is an information stealer written in the C++, it sends the stolen information to cybercriminals.

Processes

  • C:\Users\Admin\AppData\Local\Temp\43709081.exe
    "C:\Users\Admin\AppData\Local\Temp\43709081.exe"
    1⤵
      PID:1708

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1708-54-0x0000000075D01000-0x0000000075D03000-memory.dmp

      Filesize

      8KB