Overview

overview

7

Static

static

3

2024-05-27...xz.exe

windows7-x64

7

2024-05-27...xz.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-27_28e5148b36b7614f255ccf934f047d86_magniber_revil_zxxz

  • Size

    24.3MB

  • Sample

    240527-pmpm3abh6v

  • MD5

    28e5148b36b7614f255ccf934f047d86

  • SHA1

    2eebd13d752dd8423d2d32487cb8945c91476e2d

  • SHA256

    47800eb0cd43c325a871673f81b85b8a619ff7e9d0d3d8308009f6c8af6a4821

  • SHA512

    19e555e9eb30fec96a53ff9ea82589f56ab1367b8d22a49a2e684e06a4ec6b5880fb76349189ad03d6d4455356a26fa4f8c09a146a18cfc280e804dc5045fbfc

  • SSDEEP

    196608:GP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1Op3H2SAmGcWqnlv018o:GPboGX8a/jWWu3cI2D/cWcls1

Score
7/10
spywarestealer

Malware Config

Targets

    • Target

      2024-05-27_28e5148b36b7614f255ccf934f047d86_magniber_revil_zxxz

    • Size

      24.3MB

    • MD5

      28e5148b36b7614f255ccf934f047d86

    • SHA1

      2eebd13d752dd8423d2d32487cb8945c91476e2d

    • SHA256

      47800eb0cd43c325a871673f81b85b8a619ff7e9d0d3d8308009f6c8af6a4821

    • SHA512

      19e555e9eb30fec96a53ff9ea82589f56ab1367b8d22a49a2e684e06a4ec6b5880fb76349189ad03d6d4455356a26fa4f8c09a146a18cfc280e804dc5045fbfc

    • SSDEEP

      196608:GP0Hj6JigboXZDwqY8a/qVwsEXX1KOgCu3JK1Op3H2SAmGcWqnlv018o:GPboGX8a/jWWu3cI2D/cWcls1

    Score
    7/10
    spywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks