Overview

overview

10

Static

static

winprofile

windows7_x64

10

winprofile

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a25fd13894644550fa9ca60a046813031e5189d4abe4bbd68ed9e6dcfc85d698

  • Size

    7.1MB

  • Sample

    220621-dt389aabfj

  • MD5

    3f6a84da68d75bc0534974f46f2d5acc

  • SHA1

    71b99507ca40382d0073f6ee7b8f515b11a2ae64

  • SHA256

    a25fd13894644550fa9ca60a046813031e5189d4abe4bbd68ed9e6dcfc85d698

  • SHA512

    291fa44df9aea643ffd483f8b4d35cb5b985d0ff29a1dabf86ce8b87144ad792183433e4e4d0a7b2f9c15ef91b17f995687f447bd9c4e8e63594d38cfff35dd4

Score
10/10
recordbreakerstealersuricata

Malware Config

Targets

    • Target

      a25fd13894644550fa9ca60a046813031e5189d4abe4bbd68ed9e6dcfc85d698

    • Size

      7.1MB

    • MD5

      3f6a84da68d75bc0534974f46f2d5acc

    • SHA1

      71b99507ca40382d0073f6ee7b8f515b11a2ae64

    • SHA256

      a25fd13894644550fa9ca60a046813031e5189d4abe4bbd68ed9e6dcfc85d698

    • SHA512

      291fa44df9aea643ffd483f8b4d35cb5b985d0ff29a1dabf86ce8b87144ad792183433e4e4d0a7b2f9c15ef91b17f995687f447bd9c4e8e63594d38cfff35dd4

    Score
    10/10
    recordbreakerstealersuricata

    • Raccoon ver2

      Raccoon ver2.

    • RecordBreaker

      RecordBreaker is an information stealer capable of downloading and executing secondary payloads written in C++.

      stealerrecordbreaker

    • suricata: ET MALWARE Generic Stealer Config Download Request

      suricata: ET MALWARE Generic Stealer Config Download Request

      suricata

    • suricata: ET MALWARE Recordbreaker Stealer CnC Checkin

      suricata: ET MALWARE Recordbreaker Stealer CnC Checkin

      suricata

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks