Overview

overview

10

Static

static

10

winprofile

windows7_x64

10

winprofile

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    516c81438ac269de2b632fb1c59f4e36c3d714e0929a969ec971430d2d63ac4e

  • Size

    55KB

  • Sample

    220621-dtyzjacda4

  • MD5

    7894ab366f0b984ce78d7ef9724cec0d

  • SHA1

    48ca383575fdc914ed3436d40201eae6bac55007

  • SHA256

    516c81438ac269de2b632fb1c59f4e36c3d714e0929a969ec971430d2d63ac4e

  • SHA512

    bf2ecf43f4ce7451489aa9d16acfe3c9d528ec0d0b924b864630a058e38147626e4f4815cd540f9da7df507af4242e6623d645a20ed46ec1d1020dfe7cec7155

Score
10/10
recordbreakerstealersuricata

Malware Config

Extracted

Family

recordbreaker

C2

http://51.195.166.184/

Targets

    • Target

      516c81438ac269de2b632fb1c59f4e36c3d714e0929a969ec971430d2d63ac4e

    • Size

      55KB

    • MD5

      7894ab366f0b984ce78d7ef9724cec0d

    • SHA1

      48ca383575fdc914ed3436d40201eae6bac55007

    • SHA256

      516c81438ac269de2b632fb1c59f4e36c3d714e0929a969ec971430d2d63ac4e

    • SHA512

      bf2ecf43f4ce7451489aa9d16acfe3c9d528ec0d0b924b864630a058e38147626e4f4815cd540f9da7df507af4242e6623d645a20ed46ec1d1020dfe7cec7155

    Score
    10/10
    recordbreakerstealersuricata

    • RecordBreaker

      RecordBreaker is an information stealer capable of downloading and executing secondary payloads written in C++.

      stealerrecordbreaker

    • suricata: ET MALWARE Generic Stealer Config Download Request

      suricata: ET MALWARE Generic Stealer Config Download Request

      suricata

    • suricata: ET MALWARE Recordbreaker Stealer CnC Checkin

      suricata: ET MALWARE Recordbreaker Stealer CnC Checkin

      suricata
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks