matiex | d256e544c1dbe5a7d111af512e899bf0f81208bc2cc8ca5fba8c701ac7691324 | Triage

Submit
Reports

Overview

overview

Static

static

d256e544c1...24.exe

windows7-x64

d256e544c1...24.exe

windows10-2004-x64

Sharing

General

Target

d256e544c1dbe5a7d111af512e899bf0f81208bc2cc8ca5fba8c701ac7691324
Size

269KB
Sample

221125-lc6xtabd5v
MD5

9496bc692308860f1808a6b141eb7df7
SHA1

80b84b08547382757898af00968f34ff5bfec31b
SHA256

d256e544c1dbe5a7d111af512e899bf0f81208bc2cc8ca5fba8c701ac7691324
SHA512

731dbc22b4691de0d686598cea6ccdf1d1911d1f0349eda69a5627b4d709377a6669f3969f61ba5b75fcafb366d920d1dcac35ac722a2efb9eb1f9e241b5e004
SSDEEP

6144:ibXGFYBiXBE1py3uDjvrTRQgy8xwm7DVK:bOBiXBIiuXvHigy8xwmPVK

Score

10^/10

matiex keylogger stealer

Static task

static1

Behavioral task

behavioral1

Sample

d256e544c1dbe5a7d111af512e899bf0f81208bc2cc8ca5fba8c701ac7691324.exe

Resource

win7-20220812-en

matiex keylogger stealer

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

d256e544c1dbe5a7d111af512e899bf0f81208bc2cc8ca5fba8c701ac7691324.exe

Resource

win10v2004-20220812-en

matiex keylogger stealer

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  d256e544c1dbe5a7d111af512e899bf0f81208bc2cc8ca5fba8c701ac7691324
- Size
  
  269KB
- MD5
  
  9496bc692308860f1808a6b141eb7df7
- SHA1
  
  80b84b08547382757898af00968f34ff5bfec31b
- SHA256
  
  d256e544c1dbe5a7d111af512e899bf0f81208bc2cc8ca5fba8c701ac7691324
- SHA512
  
  731dbc22b4691de0d686598cea6ccdf1d1911d1f0349eda69a5627b4d709377a6669f3969f61ba5b75fcafb366d920d1dcac35ac722a2efb9eb1f9e241b5e004
- SSDEEP
  
  6144:ibXGFYBiXBE1py3uDjvrTRQgy8xwm7DVK:bOBiXBIiuXvHigy8xwmPVK
Score

10^/10

matiex keylogger stealer
- Matiex
  Matiex is a keylogger and infostealer first seen in July 2020.
  stealer keylogger matiex
- Matiex Main payload
- Drops startup file
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

matiexkeyloggerstealer

behavioral2

matiexkeyloggerstealer

© 2018-2024

Terms | Privacy