windealer | ecd001aeb6bcbafb3e2fda74d76eea3c0ddad4e6e7ff1f43cd7709d4b4580261 | Triage

Submit
Reports

Overview

overview

Static

static

3

ecd001aeb6...61.exe

windows7-x64

ecd001aeb6...61.exe

windows10-2004-x64

Sharing

General

Target

ecd001aeb6bcbafb3e2fda74d76eea3c0ddad4e6e7ff1f43cd7709d4b4580261
Size

448KB
Sample

240410-r5zxvsbf95
MD5

76ba5272a17fdab7521ea21a57d23591
SHA1

6b831413932a394bd9fb25e2bbdc06533821378c
SHA256

ecd001aeb6bcbafb3e2fda74d76eea3c0ddad4e6e7ff1f43cd7709d4b4580261
SHA512

61dbf7fc1e2e5030a9c868edef37d9bd2a9e0ae96de87087929dce451e49df283089906c1fee619a7a53762f6d85f2802364a0ce0aa90d8cfc2153d79596075e
SSDEEP

6144:d9eE+BSAOxVxkRqEavXcboOGQoEZu77RaXZDs0DZ186LxSp6TyD61:CEPxxVxkRqdvOiQTA2Ds0N1XLxSOyu

Score

10^/10

windealer stealer trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ecd001aeb6bcbafb3e2fda74d76eea3c0ddad4e6e7ff1f43cd7709d4b4580261.exe

Resource

win7-20240221-en

windealer stealer trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

ecd001aeb6bcbafb3e2fda74d76eea3c0ddad4e6e7ff1f43cd7709d4b4580261.exe

Resource

win10v2004-20240226-en

windealer stealer trojan

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  ecd001aeb6bcbafb3e2fda74d76eea3c0ddad4e6e7ff1f43cd7709d4b4580261
- Size
  
  448KB
- MD5
  
  76ba5272a17fdab7521ea21a57d23591
- SHA1
  
  6b831413932a394bd9fb25e2bbdc06533821378c
- SHA256
  
  ecd001aeb6bcbafb3e2fda74d76eea3c0ddad4e6e7ff1f43cd7709d4b4580261
- SHA512
  
  61dbf7fc1e2e5030a9c868edef37d9bd2a9e0ae96de87087929dce451e49df283089906c1fee619a7a53762f6d85f2802364a0ce0aa90d8cfc2153d79596075e
- SSDEEP
  
  6144:d9eE+BSAOxVxkRqEavXcboOGQoEZu77RaXZDs0DZ186LxSp6TyD61:CEPxxVxkRqdvOiQTA2Ds0N1XLxSOyu
Score

10^/10

windealer stealer trojan
- Detect WinDealer information stealer
  stealer
- WinDealer
  WinDealer is an info stealer used by LuoYu group.
  stealer trojan windealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

windealerstealertrojan

behavioral2

windealerstealertrojan

© 2018-2024

Terms | Privacy