Overview

overview

10

Static

static

10

8b6f863a77...6f.exe

windows7_x64

10

8b6f863a77...6f.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8b6f863a778497d070844dcdc6183dbdbd2cee6338073e83c8981f8966bfe96f

  • Size

    296KB

  • Sample

    220324-tmgpnsfhgp

  • MD5

    739fb24a3c7e5c3d0b72dc9d6a43b713

  • SHA1

    b83d6f8a94ef7cbc9875648f9d24f80d25e7f2e6

  • SHA256

    8b6f863a778497d070844dcdc6183dbdbd2cee6338073e83c8981f8966bfe96f

  • SHA512

    9bcd9c0d0ef9e7ab71846b561044fa9ed3a8bc59aa31f7defb600ce3a33e03ba429dc6afdfdf735fe4218b328fd7f817824c9b6f6805b5c967b05f646f39f85b

Score
10/10
elysiumstealerdiscoveryspywarestealer

Malware Config

Targets

    • Target

      8b6f863a778497d070844dcdc6183dbdbd2cee6338073e83c8981f8966bfe96f

    • Size

      296KB

    • MD5

      739fb24a3c7e5c3d0b72dc9d6a43b713

    • SHA1

      b83d6f8a94ef7cbc9875648f9d24f80d25e7f2e6

    • SHA256

      8b6f863a778497d070844dcdc6183dbdbd2cee6338073e83c8981f8966bfe96f

    • SHA512

      9bcd9c0d0ef9e7ab71846b561044fa9ed3a8bc59aa31f7defb600ce3a33e03ba429dc6afdfdf735fe4218b328fd7f817824c9b6f6805b5c967b05f646f39f85b

    Score
    10/10
    elysiumstealerdiscoveryspywarestealer

    • ElysiumStealer

      ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.

      stealerelysiumstealer

    • ElysiumStealer Payload

    • ElysiumStealer Support DLL

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks