elysiumstealer | 4bdcbc561275d757106189b2ca1ded00167596a7e17aa5c5610adda9ab5e4dcf | Triage

Sharing

General

Target

4bdcbc561275d757106189b2ca1ded00167596a7e17aa5c5610adda9ab5e4dcf
Size

5.7MB
Sample

230129-y5kw9sde2s
MD5

5429e1362937234fb8f248a7f80e8439
SHA1

4abb3edff98058a3abae7ca70d88e6583105a7d6
SHA256

4bdcbc561275d757106189b2ca1ded00167596a7e17aa5c5610adda9ab5e4dcf
SHA512

ea5d49400e390f13e7f0dfb2079b53b1013675ea099a9958c532312de18522948d3f1965c96c7bbada12112acc213974db176e8c9789c864e39bd0a22a29b136
SSDEEP

98304:ZUPEpCIvN4tmTITX71eurljfrAucyThBf:KPEpZ14YTAL3rlfC

Score

10^/10

elysiumstealer persistence stealer

Malware Config

Targets

- Target
  
  4bdcbc561275d757106189b2ca1ded00167596a7e17aa5c5610adda9ab5e4dcf
- Size
  
  5.7MB
- MD5
  
  5429e1362937234fb8f248a7f80e8439
- SHA1
  
  4abb3edff98058a3abae7ca70d88e6583105a7d6
- SHA256
  
  4bdcbc561275d757106189b2ca1ded00167596a7e17aa5c5610adda9ab5e4dcf
- SHA512
  
  ea5d49400e390f13e7f0dfb2079b53b1013675ea099a9958c532312de18522948d3f1965c96c7bbada12112acc213974db176e8c9789c864e39bd0a22a29b136
- SSDEEP
  
  98304:ZUPEpCIvN4tmTITX71eurljfrAucyThBf:KPEpZ14YTAL3rlfC
Score

10^/10

elysiumstealer persistence stealer
- ElysiumStealer
  ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.
  stealer elysiumstealer
- ElysiumStealer Support DLL
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

elysiumstealerpersistencestealer

behavioral2

elysiumstealerpersistencestealer