Overview

overview

10

Static

static

0661dbb6a0...77.exe

windows7_x64

10

0661dbb6a0...77.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0661dbb6a0ff7d84c25ae7dd840cefd470279346bd476f1cff5d766f0902a277

  • Size

    7.6MB

  • Sample

    220616-t2pc3agadp

  • MD5

    0c0c7081c72000e7912d89567b90b866

  • SHA1

    55809cce167d93dc3e98d85d98040bd393be0a66

  • SHA256

    0661dbb6a0ff7d84c25ae7dd840cefd470279346bd476f1cff5d766f0902a277

  • SHA512

    c6a43e19d126f3449195b40237fa2b9eb3f2750974dfe8738fe9d8eaf9d6c642d70db1f8746b698ee06a7a94cc2e05826a2b4a70b6e86b1cd1066ec78e903f52

Score
10/10
recordbreakerstealersuricata

Malware Config

Targets

    • Target

      0661dbb6a0ff7d84c25ae7dd840cefd470279346bd476f1cff5d766f0902a277

    • Size

      7.6MB

    • MD5

      0c0c7081c72000e7912d89567b90b866

    • SHA1

      55809cce167d93dc3e98d85d98040bd393be0a66

    • SHA256

      0661dbb6a0ff7d84c25ae7dd840cefd470279346bd476f1cff5d766f0902a277

    • SHA512

      c6a43e19d126f3449195b40237fa2b9eb3f2750974dfe8738fe9d8eaf9d6c642d70db1f8746b698ee06a7a94cc2e05826a2b4a70b6e86b1cd1066ec78e903f52

    Score
    10/10
    recordbreakerstealersuricata

    • RecordBreaker

      RecordBreaker is an information stealer capable of downloading and executing secondary payloads written in C++.

      stealerrecordbreaker

    • suricata: ET MALWARE Generic Stealer Config Download Request

      suricata: ET MALWARE Generic Stealer Config Download Request

      suricata

    • suricata: ET MALWARE Recordbreaker Stealer CnC Checkin

      suricata: ET MALWARE Recordbreaker Stealer CnC Checkin

      suricata

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks