Overview

overview

7

Static

static

3

2024-04-28...xz.exe

windows7-x64

7

2024-04-28...xz.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_6a170214492c7aa21d39f424097f9d88_magniber_revil_zxxz

  • Size

    24.3MB

  • Sample

    240428-nrfehseg62

  • MD5

    6a170214492c7aa21d39f424097f9d88

  • SHA1

    2cc2243cc0df34e078d11fbf4c21a60f70c09fa1

  • SHA256

    f4dba1204f8fe50d0ee2c524a5b32a5c5882520ef30c10d9f02000af2171bf51

  • SHA512

    8ab9a4b856f6238d04c2f38afcde0419ec9d25666cdd0102bb0251c99f09928e9b6ae32409707bf9a4a6714daf2d875ce7e44377370dfb54324507bee1b1bf82

  • SSDEEP

    196608:JP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1OpUH2SAmGcWqnlv018CnU:JPboGX8a/jWWu3cP2D/cWcls17U

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-28_6a170214492c7aa21d39f424097f9d88_magniber_revil_zxxz

    • Size

      24.3MB

    • MD5

      6a170214492c7aa21d39f424097f9d88

    • SHA1

      2cc2243cc0df34e078d11fbf4c21a60f70c09fa1

    • SHA256

      f4dba1204f8fe50d0ee2c524a5b32a5c5882520ef30c10d9f02000af2171bf51

    • SHA512

      8ab9a4b856f6238d04c2f38afcde0419ec9d25666cdd0102bb0251c99f09928e9b6ae32409707bf9a4a6714daf2d875ce7e44377370dfb54324507bee1b1bf82

    • SSDEEP

      196608:JP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1OpUH2SAmGcWqnlv018CnU:JPboGX8a/jWWu3cP2D/cWcls17U

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks