elysiumstealer | eef80166376694730e97fbc2649644580287b3dbe9bd4d1f372187c80bb667b1 | Triage

Sharing

General

Target

eef80166376694730e97fbc2649644580287b3dbe9bd4d1f372187c80bb667b1
Size

7.0MB
Sample

230129-y47dwabh96
MD5

a2592567663668ee268ab64d0821e2eb
SHA1

cf3fab809dd3fedc4413ef3507ac9555b911fe59
SHA256

eef80166376694730e97fbc2649644580287b3dbe9bd4d1f372187c80bb667b1
SHA512

a779480075eb2faf74387f55c3bdc88c72aa32a55af813f7b9aaa800c9af2290690ae4c3f2a3b817c517c857c0b33f3c818d3bac6118693e12fc3049451d3b45
SSDEEP

98304:Qat5iJ5H1nvusV/CD5qr5bU4aa6Os7Xzyl8kT/:Ht5iJ5Vvus4D56Ata6l1

Score

10^/10

elysiumstealer persistence stealer

Malware Config

Targets

- Target
  
  eef80166376694730e97fbc2649644580287b3dbe9bd4d1f372187c80bb667b1
- Size
  
  7.0MB
- MD5
  
  a2592567663668ee268ab64d0821e2eb
- SHA1
  
  cf3fab809dd3fedc4413ef3507ac9555b911fe59
- SHA256
  
  eef80166376694730e97fbc2649644580287b3dbe9bd4d1f372187c80bb667b1
- SHA512
  
  a779480075eb2faf74387f55c3bdc88c72aa32a55af813f7b9aaa800c9af2290690ae4c3f2a3b817c517c857c0b33f3c818d3bac6118693e12fc3049451d3b45
- SSDEEP
  
  98304:Qat5iJ5H1nvusV/CD5qr5bU4aa6Os7Xzyl8kT/:Ht5iJ5Vvus4D56Ata6l1
Score

10^/10

elysiumstealer persistence stealer
- ElysiumStealer
  ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.
  stealer elysiumstealer
- ElysiumStealer Support DLL
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

elysiumstealerpersistencestealer

behavioral2

elysiumstealerpersistencestealer