General

  • Target

    b2d61190cfc8150b16ebefb682a55aa761203e864b83be8ae4c925ebe0667b4c

  • Size

    455KB

  • Sample

    220501-3j458sbber

  • MD5

    6d101c54dc8074512258ca331b0d5bcd

  • SHA1

    82e95c22533fb743e6647cc33ef3f6d25c667671

  • SHA256

    b2d61190cfc8150b16ebefb682a55aa761203e864b83be8ae4c925ebe0667b4c

  • SHA512

    40435545170cfb77ccc922c003eb107761c486818e679a935e7f3e1557d090323ee384091ef9982b9f9bdcf49cc59c61bbd5725493e737b062992954a75f53b9

Malware Config

Targets

    • Target

      b2d61190cfc8150b16ebefb682a55aa761203e864b83be8ae4c925ebe0667b4c

    • Size

      455KB

    • MD5

      6d101c54dc8074512258ca331b0d5bcd

    • SHA1

      82e95c22533fb743e6647cc33ef3f6d25c667671

    • SHA256

      b2d61190cfc8150b16ebefb682a55aa761203e864b83be8ae4c925ebe0667b4c

    • SHA512

      40435545170cfb77ccc922c003eb107761c486818e679a935e7f3e1557d090323ee384091ef9982b9f9bdcf49cc59c61bbd5725493e737b062992954a75f53b9

    • ElysiumStealer

      ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.

    • ElysiumStealer Payload

    • ElysiumStealer Support DLL

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v6

Tasks