General

  • Target

    331c4997c96e9ff6527f1391da806ab74922c42bc79b7fd4e8892d964d8bb721

  • Size

    418KB

  • Sample

    220418-nynpgaebbq

  • MD5

    9e7e30cc84c286348cdfe8368d70f4c4

  • SHA1

    8ed40a98c971941f62739d0b151630bdc77c062e

  • SHA256

    331c4997c96e9ff6527f1391da806ab74922c42bc79b7fd4e8892d964d8bb721

  • SHA512

    6f66ccf24b289082f14b84031940a925aca35e21dff57486019fb661da0fd732dd4616175f7c707e4e3f464e209acb3495952cff52ea4e550d7bb8771c311c45

Malware Config

Targets

    • Target

      331c4997c96e9ff6527f1391da806ab74922c42bc79b7fd4e8892d964d8bb721

    • Size

      418KB

    • MD5

      9e7e30cc84c286348cdfe8368d70f4c4

    • SHA1

      8ed40a98c971941f62739d0b151630bdc77c062e

    • SHA256

      331c4997c96e9ff6527f1391da806ab74922c42bc79b7fd4e8892d964d8bb721

    • SHA512

      6f66ccf24b289082f14b84031940a925aca35e21dff57486019fb661da0fd732dd4616175f7c707e4e3f464e209acb3495952cff52ea4e550d7bb8771c311c45

    • ElysiumStealer

      ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks