Overview

overview

7

Static

static

3

2024-04-28...xz.exe

windows7-x64

7

2024-04-28...xz.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_88a9d6c5816e5fb32dd2801c34cbb0d8_magniber_revil_zxxz

  • Size

    24.3MB

  • Sample

    240428-xj8wjaef9y

  • MD5

    88a9d6c5816e5fb32dd2801c34cbb0d8

  • SHA1

    5efae04bb2ab9021498e0cbbc647ef0117551ce0

  • SHA256

    74877a615b8e27dded4109dbf5252ca829bef490b81a522eaa29a383f5af3ced

  • SHA512

    c0d14dfcdfdde17b6815be74cfd5fe266f65e3ef43bc997dca16df5eeba749f20dd0d7b0a5f452e9543b16b5e35d603b5bf88726513244e45fad2272c5e25bb9

  • SSDEEP

    196608:fP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1Op3H2SAmGcWqnlv018QQW:fPboGX8a/jWWu3cI2D/cWcls1U

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-04-28_88a9d6c5816e5fb32dd2801c34cbb0d8_magniber_revil_zxxz

    • Size

      24.3MB

    • MD5

      88a9d6c5816e5fb32dd2801c34cbb0d8

    • SHA1

      5efae04bb2ab9021498e0cbbc647ef0117551ce0

    • SHA256

      74877a615b8e27dded4109dbf5252ca829bef490b81a522eaa29a383f5af3ced

    • SHA512

      c0d14dfcdfdde17b6815be74cfd5fe266f65e3ef43bc997dca16df5eeba749f20dd0d7b0a5f452e9543b16b5e35d603b5bf88726513244e45fad2272c5e25bb9

    • SSDEEP

      196608:fP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1Op3H2SAmGcWqnlv018QQW:fPboGX8a/jWWu3cI2D/cWcls1U

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks