xloader

General

Target

71f3db76559cae094a1ae1dd4526abefe57e6336db0532e9010ee2fad1bab9e2
Size

214KB
Sample

241121-2g932aymbt
MD5

b923c278c6e78d160b56823d03e38847
SHA1

513f5a9557ff544ce9c740d6bfa03d9f2b30c0a1
SHA256

71f3db76559cae094a1ae1dd4526abefe57e6336db0532e9010ee2fad1bab9e2
SHA512

e8ad28d72a40c30340d5b1a84347dc5ad39c74f5214f9483130be06ccb779ea0c26ac68cd15994e448b336a82374d6b023fa25c7de58f3e0683a1668bb687dcf
SSDEEP

6144:LnK7Hh1KXMuXj5G5hH4+emlvWJDn82vKohDQ:zKLoDjkG+eOvWJb8VoxQ

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.3

Campaign

e8mc

Decoy

cristiansantacruz.com

martijnvanderlinden.media

magen-tracks.xyz

sdghotel.com

vigilantmagazine.com

baihuaresort.com

zealoteck.com

qr-world.info

madousp.info

gmailcoo.com

beautychoicecosmetics.com

ninjadigitalmarketing.net

bestdormroomessentials.com

partsground.com

nhimlike.com

onatstore.com

zoisalud.com

atxrepublicans.com

spellsislam.com

about-sexy.com

Targets

- Target
  
  win32.exe
- Size
  
  370KB
- MD5
  
  a9603bd99100cac3d701d5294228bf19
- SHA1
  
  10b504ddd800474cd328ce3600b68698c52c342f
- SHA256
  
  56f6ae8977212fbc76c8395b969260cbb6daa8e73a6118b0e1493ab71722ddc8
- SHA512
  
  549c3bcf0e1ccea52e1ee48a893b801ff77dbb99dde1752e563e8b042009cad08d1ce4448e9bd27ee6353916beb2767c897d3631f7303f3cba77d31d80a57ac2
- SSDEEP
  
  6144:45yeUG+CmIqC73I6OYBmVX8cp6RetfXhdJo7LgBq1KfXr/UV1qi:45bDKIqCk6jEscpieNXhdOPM0Kvr/pi
Score

10^/10

xloader e8mc loader rat discovery
- Xloader
  Xloader is a rebranded version of Formbook malware.
  loader xloader
- Xloader family
  xloader
- Xloader payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Xloader family

Xloader payload

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2