General

  • Target

    SecuriteInfo.com.W32.AIDetectNet.01.7055.22965

  • Size

    579KB

  • Sample

    220620-v65fhsgdgp

  • MD5

    8489934ffccdac1956a3b4cf1b380b08

  • SHA1

    54c22835b47f09bf5fc0fdddd240ec2a7e6ab4cf

  • SHA256

    29c2e96c75c881fda4383b8e56db10d74c007d2ffb3cd4c4d3801d30589b0c9e

  • SHA512

    e26d4b0eced725221b6238e2073dbccc9292c69c38e1bac8d61574dba5b78dec8ca21cc68861070d8e07bbc2632e61620aff1b2cddd5009a520aba26734d221c

Score
10/10

Malware Config

Targets

    • Target

      SecuriteInfo.com.W32.AIDetectNet.01.7055.22965

    • Size

      579KB

    • MD5

      8489934ffccdac1956a3b4cf1b380b08

    • SHA1

      54c22835b47f09bf5fc0fdddd240ec2a7e6ab4cf

    • SHA256

      29c2e96c75c881fda4383b8e56db10d74c007d2ffb3cd4c4d3801d30589b0c9e

    • SHA512

      e26d4b0eced725221b6238e2073dbccc9292c69c38e1bac8d61574dba5b78dec8ca21cc68861070d8e07bbc2632e61620aff1b2cddd5009a520aba26734d221c

    Score
    10/10
    • Xloader

      Xloader is a rebranded version of Formbook malware.

    • Xloader Payload

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks