phoenixstealer | 5241bc7f72493a983dea15e19401dec64608691a2efcf5029a63a90ca114a9c0 | Triage

Submit
Reports

Overview

overview

Static

static

81333593.exe

windows7_x64

81333593.exe

windows10-2004_x64

Analysis

max time kernel
143s
max time network
140s
platform
windows10-2004_x64
resource
win10v2004-20220310-en
submitted
23-03-2022 16:29

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

81333593.exe

Resource

win7-20220310-en

phoenixstealer stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

81333593.exe

Resource

win10v2004-20220310-en

phoenixstealer stealer

windows10-2004_x64

0 signatures

0 seconds

Report Analysis Logs

General

Target

81333593.exe
Size

545KB
MD5

c42d2cf4b87da93595f0ce660c0d80ee
SHA1

fe8b81f901510301291ecc9c5119fb41b7c54845
SHA256

5241bc7f72493a983dea15e19401dec64608691a2efcf5029a63a90ca114a9c0
SHA512

ce42d15d1344f96eaea370770f2a2120f5cac3f551a182b3eb6ccf478598d0e7cc779d15a5d8fb68aa600987aae14ac5b24171d641e791ce935f5e6afdc4608c

Score

10^/10

phoenixstealer stealer

Malware Config

Signatures

PhoenixStealer
PhoenixStealer is an information stealer written in the C++, it sends the stolen information to cybercriminals.
stealer phoenixstealer

Processes

C:\Users\Admin\AppData\Local\Temp\81333593.exe
"C:\Users\Admin\AppData\Local\Temp\81333593.exe"
1⤵
PID:5052

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2024

Terms | Privacy