elysiumstealer | d9ca64ebc3dc73c07a901e4c86c782e3df5737ff1342f89fd823246fcb5245f8 | Triage

Sharing

General

Target

d9ca64ebc3dc73c07a901e4c86c782e3df5737ff1342f89fd823246fcb5245f8
Size

5.8MB
Sample

230129-y48xpsdd9t
MD5

51d9b0c77977f5ebbb61d8be72be1022
SHA1

1d91da61c6cf09f7f10fe9c86b2bab25e01b0052
SHA256

d9ca64ebc3dc73c07a901e4c86c782e3df5737ff1342f89fd823246fcb5245f8
SHA512

45a4fa7c7c66ee735e2e687520194d19ed9531fe5f944d2ae04cb0755aed355f39936944f79787911ce9929d63f3993335726d82242ddd77e2ffa07ddf1e5c4d
SSDEEP

98304:AjuDKnpU/EZ7/CDdbrlFmim58O6awB9Bv:6uDKpU/e7/mdbBJm58

Score

10^/10

elysiumstealer persistence stealer

Malware Config

Targets

- Target
  
  d9ca64ebc3dc73c07a901e4c86c782e3df5737ff1342f89fd823246fcb5245f8
- Size
  
  5.8MB
- MD5
  
  51d9b0c77977f5ebbb61d8be72be1022
- SHA1
  
  1d91da61c6cf09f7f10fe9c86b2bab25e01b0052
- SHA256
  
  d9ca64ebc3dc73c07a901e4c86c782e3df5737ff1342f89fd823246fcb5245f8
- SHA512
  
  45a4fa7c7c66ee735e2e687520194d19ed9531fe5f944d2ae04cb0755aed355f39936944f79787911ce9929d63f3993335726d82242ddd77e2ffa07ddf1e5c4d
- SSDEEP
  
  98304:AjuDKnpU/EZ7/CDdbrlFmim58O6awB9Bv:6uDKpU/e7/mdbBJm58
Score

10^/10

elysiumstealer persistence stealer
- ElysiumStealer
  ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.
  stealer elysiumstealer
- ElysiumStealer Support DLL
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

elysiumstealerpersistencestealer

behavioral2

elysiumstealerpersistencestealer