elysiumstealer | f3fd64e80feae97427c803a39db0495c6e79dbecd22bbdc13e69bd81c04022ec | Triage

Sharing

General

Target

f3fd64e80feae97427c803a39db0495c6e79dbecd22bbdc13e69bd81c04022ec
Size

5.8MB
Sample

230129-y449hsbh94
MD5

548f95882232b5ed71619c65ce54d801
SHA1

0d9a5ca31137eef8efce53f060f3c007558c8435
SHA256

f3fd64e80feae97427c803a39db0495c6e79dbecd22bbdc13e69bd81c04022ec
SHA512

a93b2004f07a85d0079f28bb92f83ef74b679a2cb9f7af9c3b804228fe38057bb9fe988f46c488c5fcb65688a0ca766e80462afa382b8c29d98f22ff410f3dde
SSDEEP

98304:8juDKnpU/EZ7/CDdbrlFmim58O6awB9BX:WuDKpU/e7/mdbBJm58

Score

10^/10

elysiumstealer persistence stealer

Malware Config

Targets

- Target
  
  f3fd64e80feae97427c803a39db0495c6e79dbecd22bbdc13e69bd81c04022ec
- Size
  
  5.8MB
- MD5
  
  548f95882232b5ed71619c65ce54d801
- SHA1
  
  0d9a5ca31137eef8efce53f060f3c007558c8435
- SHA256
  
  f3fd64e80feae97427c803a39db0495c6e79dbecd22bbdc13e69bd81c04022ec
- SHA512
  
  a93b2004f07a85d0079f28bb92f83ef74b679a2cb9f7af9c3b804228fe38057bb9fe988f46c488c5fcb65688a0ca766e80462afa382b8c29d98f22ff410f3dde
- SSDEEP
  
  98304:8juDKnpU/EZ7/CDdbrlFmim58O6awB9BX:WuDKpU/e7/mdbBJm58
Score

10^/10

elysiumstealer persistence stealer
- ElysiumStealer
  ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.
  stealer elysiumstealer
- ElysiumStealer Support DLL
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

elysiumstealerpersistencestealer

behavioral2

elysiumstealerpersistencestealer