matiex | dbe6359af1e119c871d0811f321e2ee4044eaf6ec65c68623937d096c197fe8c | Triage

Submit
Reports

Overview

overview

Static

static

3

54632e7d37...7d.exe

windows7-x64

3

54632e7d37...7d.exe

windows10-2004-x64

Sharing

General

Target

54632e7d37d3142474baff846284247d.exe
Size

812KB
Sample

240111-y1cp4agdb8
MD5

54632e7d37d3142474baff846284247d
SHA1

dfd39606a2dce9ffe5887f494d2cba0ee3c8bd22
SHA256

dbe6359af1e119c871d0811f321e2ee4044eaf6ec65c68623937d096c197fe8c
SHA512

0679ef0eb7b973cef0ebb94bc4e8b0eaf2e5a9ef587b4c54fe81dc984d762bda60266ba83da24bbd5cf9f42110f78b7850e3e4a5cdec8c88037734bf5ccd95ee
SSDEEP

12288:2Pp+gczyhNSvRbBQHR4qz91hI0zSaNsvz+yuWDVId21NaI+E8tyvXMpJXfXUy/Wj:2Dpjtacljjy4OyJC+Ah+yFQzHm2G

Score

10^/10

matiex keylogger stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

54632e7d37d3142474baff846284247d.exe

Resource

win7-20231129-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

54632e7d37d3142474baff846284247d.exe

Resource

win10v2004-20231222-en

matiex keylogger stealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

matiex

Credentials

Protocol: smtp
Host:
mail.thts.vn
Port:
25
Username:
[email protected]
Password:
123luongngan1989
Email To:
[email protected]

Targets

- Target
  
  54632e7d37d3142474baff846284247d.exe
- Size
  
  812KB
- MD5
  
  54632e7d37d3142474baff846284247d
- SHA1
  
  dfd39606a2dce9ffe5887f494d2cba0ee3c8bd22
- SHA256
  
  dbe6359af1e119c871d0811f321e2ee4044eaf6ec65c68623937d096c197fe8c
- SHA512
  
  0679ef0eb7b973cef0ebb94bc4e8b0eaf2e5a9ef587b4c54fe81dc984d762bda60266ba83da24bbd5cf9f42110f78b7850e3e4a5cdec8c88037734bf5ccd95ee
- SSDEEP
  
  12288:2Pp+gczyhNSvRbBQHR4qz91hI0zSaNsvz+yuWDVId21NaI+E8tyvXMpJXfXUy/Wj:2Dpjtacljjy4OyJC+Ah+yFQzHm2G
Score

10^/10

matiex keylogger stealer
- Matiex
  Matiex is a keylogger and infostealer first seen in July 2020.
  stealer keylogger matiex
- Matiex Main payload
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

matiexkeyloggerstealer

© 2018-2025

Terms | Privacy