xloader | bc8c6864364e0206701504077c2cf8303d8c9b1a122a15b9eabd79e35282fa7b

General

Target

bc8c6864364e0206701504077c2cf8303d8c9b1a122a15b9eabd79e35282fa7b
Size

164KB
Sample

241121-2fbh3syley
MD5

7db245d6a00c30852e7b90cef5fd9092
SHA1

5fa6939ae6962ff68d9c4d4550d4bb6b90647271
SHA256

bc8c6864364e0206701504077c2cf8303d8c9b1a122a15b9eabd79e35282fa7b
SHA512

571d68ff130df368aff16f2651dc8b0c4d4160b64b32d5ce7cc335490d30988d1f74cab2820a6f4c65bfe64bfa6d9c4055f42a069d9bdf957f1d749fdc5120dc
SSDEEP

3072:eJpEo2pOQR2LA/JwM23Gy6ptjGxWRW79oCL6aoKy:EEFsGKM2W5ptjGARV

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

gjqa

Decoy

nutritioustooth.com

ultimatetrainingarea.com

heyeasygift.com

kennethareas.com

masaru471002.com

lordsoflux.com

fundamentalglobal.store

zonesoftwarepartners.com

nobi.group

hebronhvac.com

remodelacionesenbogota.com

stellarjservices.com

xrzthd.com

601loganwaydrive.com

kinohadoma.pro

808gang.net

objetivofit.com

devasuryan.com

gosbs-c01.com

sealells.com

Targets

- Target
  
  bc8c6864364e0206701504077c2cf8303d8c9b1a122a15b9eabd79e35282fa7b
- Size
  
  164KB
- MD5
  
  7db245d6a00c30852e7b90cef5fd9092
- SHA1
  
  5fa6939ae6962ff68d9c4d4550d4bb6b90647271
- SHA256
  
  bc8c6864364e0206701504077c2cf8303d8c9b1a122a15b9eabd79e35282fa7b
- SHA512
  
  571d68ff130df368aff16f2651dc8b0c4d4160b64b32d5ce7cc335490d30988d1f74cab2820a6f4c65bfe64bfa6d9c4055f42a069d9bdf957f1d749fdc5120dc
- SSDEEP
  
  3072:eJpEo2pOQR2LA/JwM23Gy6ptjGxWRW79oCL6aoKy:EEFsGKM2W5ptjGARV
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2