Overview

overview

7

Static

static

3

2024-05-17...xz.exe

windows7-x64

7

2024-05-17...xz.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-17_92d47fcd78dea1b6daba5634e38a031f_magniber_revil_zxxz

  • Size

    24.3MB

  • Sample

    240517-hkm8wsec6w

  • MD5

    92d47fcd78dea1b6daba5634e38a031f

  • SHA1

    0eaa3c9f7558934e427aa9fa546bddc85e187be1

  • SHA256

    450f0489b0534da24a56b7c2d0b33ef2ffb9d82b3d58b8a7bc873389ca945f2a

  • SHA512

    65d10fdcd5ba313423b254fb388d6da7a193083edb8b82ba2e82848b73947a1c29d892a4ac53a1e6ae9b9c165e8f8f05f98d9cd401b7085bcb9550acecf828c3

  • SSDEEP

    196608:cP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1Op3H2SAmGcWqnlv018l17:cPboGX8a/jWWu3cI2D/cWcls1a

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-17_92d47fcd78dea1b6daba5634e38a031f_magniber_revil_zxxz

    • Size

      24.3MB

    • MD5

      92d47fcd78dea1b6daba5634e38a031f

    • SHA1

      0eaa3c9f7558934e427aa9fa546bddc85e187be1

    • SHA256

      450f0489b0534da24a56b7c2d0b33ef2ffb9d82b3d58b8a7bc873389ca945f2a

    • SHA512

      65d10fdcd5ba313423b254fb388d6da7a193083edb8b82ba2e82848b73947a1c29d892a4ac53a1e6ae9b9c165e8f8f05f98d9cd401b7085bcb9550acecf828c3

    • SSDEEP

      196608:cP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1Op3H2SAmGcWqnlv018l17:cPboGX8a/jWWu3cI2D/cWcls1a

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks