Overview

overview

10

Static

static

3

NoCry Rans...ar.zip

windows11-21h2-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NoCry Ransomware Builder 2021.rar.zip

  • Size

    7.9MB

  • Sample

    241119-h7rjtssenr

  • MD5

    fb5356fb440dcf8013e39c891d626d90

  • SHA1

    1263f585f64b7fb55ee735c92a562f2fa0882b18

  • SHA256

    be14698dddf38be027a4f4178b4f33d5d98e14f879064812a15e54c1eee91cb5

  • SHA512

    1809ae1b8efbe7197b179187c7a1df8b69432b3ff398277a5a5230ec7f9e9f2f40ea1a430118d22a0eb345d7c97ad8adde09c91a09f5c9cb98a5fc552ba16f7a

  • SSDEEP

    196608:5Cxn100Yr+gjTFg9mcYBHexffSfpvbAF/Zvp0lE8gFVEzfnPoOK6CX:UuKgvEmcYB+5A1bez0lE8gFVETsPX

Score
10/10
elysiumstealerdiscoverylinkpdfspywarestealer

Malware Config

Targets

    • Target

      NoCry Ransomware Builder 2021.rar.zip

    • Size

      7.9MB

    • MD5

      fb5356fb440dcf8013e39c891d626d90

    • SHA1

      1263f585f64b7fb55ee735c92a562f2fa0882b18

    • SHA256

      be14698dddf38be027a4f4178b4f33d5d98e14f879064812a15e54c1eee91cb5

    • SHA512

      1809ae1b8efbe7197b179187c7a1df8b69432b3ff398277a5a5230ec7f9e9f2f40ea1a430118d22a0eb345d7c97ad8adde09c91a09f5c9cb98a5fc552ba16f7a

    • SSDEEP

      196608:5Cxn100Yr+gjTFg9mcYBHexffSfpvbAF/Zvp0lE8gFVEzfnPoOK6CX:UuKgvEmcYB+5A1bez0lE8gFVETsPX

    Score
    10/10
    elysiumstealerdiscoveryspywarestealer

    • ElysiumStealer

      ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.

      stealerelysiumstealer

    • ElysiumStealer Support DLL

    • Elysiumstealer family

      elysiumstealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks