Overview

overview

10

Static

static

bd2719ed2b...f4.exe

windows7_x64

10

bd2719ed2b...f4.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bd2719ed2beca9689bbc1f23836c1501613067d223c0f254c742d2162a5e0af4

  • Size

    157KB

  • Sample

    220415-fshx2afbak

  • MD5

    7fa498515cf1faf0c32b02b0ec532a13

  • SHA1

    474e7c532be9af3c5fdd297982253f4454102305

  • SHA256

    bd2719ed2beca9689bbc1f23836c1501613067d223c0f254c742d2162a5e0af4

  • SHA512

    bdbedd153628f9d3ac82f5df90372e19e7f39847b09c72bfaff227b044c86769df78022e616b20413c0cf080a87c08b697edb9593f8ced55b48a1c3409d7ed48

Score
10/10
metastealerpoullightstealertrojan

Malware Config

Targets

    • Target

      bd2719ed2beca9689bbc1f23836c1501613067d223c0f254c742d2162a5e0af4

    • Size

      157KB

    • MD5

      7fa498515cf1faf0c32b02b0ec532a13

    • SHA1

      474e7c532be9af3c5fdd297982253f4454102305

    • SHA256

      bd2719ed2beca9689bbc1f23836c1501613067d223c0f254c742d2162a5e0af4

    • SHA512

      bdbedd153628f9d3ac82f5df90372e19e7f39847b09c72bfaff227b044c86769df78022e616b20413c0cf080a87c08b697edb9593f8ced55b48a1c3409d7ed48

    Score
    10/10
    poullightstealertrojanmetastealer

    • Meta Stealer Stealer

      Meta Stealer steals passwords stored in browsers, written in C++.

      stealermetastealer

    • Poullight

      Poullight is an information stealer first seen in March 2020.

      trojanstealerpoullight

    • Poullight Stealer Payload

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks