xloader | ddf31a344ff3e2e029d6744b609da539014db80c9a62b13d00d275bf25fa6d64 | Triage

Submit
Reports

Overview

overview

Static

static

985bff9f5d...bc.exe

windows7_x64

985bff9f5d...bc.exe

windows10-2004_x64

Sharing

General

Target

7694096136.zip
Size

703KB
Sample

220705-whtjsadde2
MD5

0086590bb56d2b4618ad2e24cfab2ff3
SHA1

5dfa1b01e566974ce8f698c75658821d7e75239c
SHA256

ddf31a344ff3e2e029d6744b609da539014db80c9a62b13d00d275bf25fa6d64
SHA512

6376ce8c519498ce74eded504290597912eb9bda23dfd356ce046cb5241154772111df889f15489f8e143faecd542bcefe70e363465d79372708692473d1d947

Score

10^/10

xloader loader rat

Static task

static1

Behavioral task

behavioral1

Sample

985bff9f5d8470baf0a3c5520eae6e8bb87a9761bd6c7ce41855c5c8cc0a58bc.exe

Resource

win7-20220414-en

xloader loader rat

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

985bff9f5d8470baf0a3c5520eae6e8bb87a9761bd6c7ce41855c5c8cc0a58bc.exe

Resource

win10v2004-20220414-en

xloader loader rat

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  985bff9f5d8470baf0a3c5520eae6e8bb87a9761bd6c7ce41855c5c8cc0a58bc
- Size
  
  837KB
- MD5
  
  328eaa1e53fdeba2a8d99f4a5f0385dd
- SHA1
  
  9da77711434bfe5eb4f26365513c7663da5e9885
- SHA256
  
  985bff9f5d8470baf0a3c5520eae6e8bb87a9761bd6c7ce41855c5c8cc0a58bc
- SHA512
  
  475be1e25abb8697952b5014ebfa6d5e26eb3f0d312739771f4f0f91819f55b3620dbeb76c3bb47a7febf17f8588232d4cecb25cc130f7437d1d810dd8b0586d
Score

10^/10

xloader loader rat
- Xloader
  Xloader is a rebranded version of Formbook malware.
  loader xloader
- Xloader Payload
  rat
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

xloaderloaderrat

behavioral2

xloaderloaderrat

© 2018-2024

Terms | Privacy