Overview

overview

7

Static

static

3

2024-01-18...xz.exe

windows7-x64

7

2024-01-18...xz.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-18_67559ebcdfda64648f78e4e415e9f32f_magniber_revil_zxxz

  • Size

    24.3MB

  • Sample

    240118-2tcy3adael

  • MD5

    67559ebcdfda64648f78e4e415e9f32f

  • SHA1

    0278c2e0aa2d5dd5b43bbd7392a8ac0946071bcc

  • SHA256

    93c716c498d3f3c17ae5e52bd8f849482b4eb349d8ce441eeb4f1c13c35fb1c7

  • SHA512

    02306f9870300492576d325765b9c5ebda70c6209c2443b8d1ce05858ce7e6cd0f9e592fe30371cae8ba29056e18441369103761d16aefec430b3370d6639930

  • SSDEEP

    196608:lP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1OpUH2SAmGcWqnlv018HVQBWG:lPboGX8a/jWWu3cP2D/cWcls13B

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-01-18_67559ebcdfda64648f78e4e415e9f32f_magniber_revil_zxxz

    • Size

      24.3MB

    • MD5

      67559ebcdfda64648f78e4e415e9f32f

    • SHA1

      0278c2e0aa2d5dd5b43bbd7392a8ac0946071bcc

    • SHA256

      93c716c498d3f3c17ae5e52bd8f849482b4eb349d8ce441eeb4f1c13c35fb1c7

    • SHA512

      02306f9870300492576d325765b9c5ebda70c6209c2443b8d1ce05858ce7e6cd0f9e592fe30371cae8ba29056e18441369103761d16aefec430b3370d6639930

    • SSDEEP

      196608:lP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1OpUH2SAmGcWqnlv018HVQBWG:lPboGX8a/jWWu3cP2D/cWcls13B

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks