nullmixer | fe0fd15683932ee4e275a3f63d8de80e54ad0a7f9be2ff3595bab0ec8da9fb1e | Triage

Submit
Reports

Overview

overview

Static

static

1576d4a98a...18.exe

windows7-x64

1576d4a98a...18.exe

windows10-2004-x64

3

Sharing

General

Target

1576d4a98acd0b02c7e2f145aeb6fd5e_JaffaCakes118
Size

8.9MB
Sample

241005-arwvlsygqf
MD5

1576d4a98acd0b02c7e2f145aeb6fd5e
SHA1

ff5fa2b380b2e637d069d81a969361f79d1bb78d
SHA256

fe0fd15683932ee4e275a3f63d8de80e54ad0a7f9be2ff3595bab0ec8da9fb1e
SHA512

b7f038111b41c1f4176294b01818b0d25782a2d486f4fa320332b8fb32fc8f1d88320e40a1fed701f55735bc632dc55108f59d77e008d4731e85388f20cc81ae
SSDEEP

98304:F5qLqDGkWPUQDfbcmZSf9wQjndFYCITWvfShrFzo4nHo4SpMp:FMmDIMQPmf/BwH5

Score

10^/10

nullmixer privateloader socelars discovery dropper loader stealer

Static task

static1

socelars nullmixer privateloader

5 signatures

Behavioral task

behavioral1

Sample

1576d4a98acd0b02c7e2f145aeb6fd5e_JaffaCakes118.exe

Resource

win7-20240708-en

nullmixer privateloader socelars dropper loader stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

1576d4a98acd0b02c7e2f145aeb6fd5e_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

1 signatures

150 seconds

Malware Config

Extracted

Family

nullmixer

C2

http://znegs.xyz/

Targets

- Target
  
  1576d4a98acd0b02c7e2f145aeb6fd5e_JaffaCakes118
- Size
  
  8.9MB
- MD5
  
  1576d4a98acd0b02c7e2f145aeb6fd5e
- SHA1
  
  ff5fa2b380b2e637d069d81a969361f79d1bb78d
- SHA256
  
  fe0fd15683932ee4e275a3f63d8de80e54ad0a7f9be2ff3595bab0ec8da9fb1e
- SHA512
  
  b7f038111b41c1f4176294b01818b0d25782a2d486f4fa320332b8fb32fc8f1d88320e40a1fed701f55735bc632dc55108f59d77e008d4731e85388f20cc81ae
- SSDEEP
  
  98304:F5qLqDGkWPUQDfbcmZSf9wQjndFYCITWvfShrFzo4nHo4SpMp:FMmDIMQPmf/BwH5
Score

10^/10

nullmixer privateloader socelars dropper loader stealer discovery
- NullMixer
  NullMixer is a malware dropper leading to an infection chain of a wide variety of malware families.
  dropper nullmixer
- PrivateLoader
  PrivateLoader is a downloader sold as a pay-per-install malware distribution service.
  loader privateloader
- Socelars
  Socelars is an infostealer targeting browser cookies and credit card credentials.
  stealer socelars
- Socelars payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

socelarsnullmixerprivateloader

behavioral1

nullmixerprivateloadersocelarsdropperloaderstealer

behavioral2

© 2018-2025

Terms | Privacy