xloader | 7b736f0bd811f5fef7955f90f90b4f6d16e557f1f9eb9c7edd838d1d6cb6c295

General

Target

7b736f0bd811f5fef7955f90f90b4f6d16e557f1f9eb9c7edd838d1d6cb6c295
Size

168KB
Sample

241121-y8lyqs1pgl
MD5

dcab5f61361dc82036f2802ef20eac94
SHA1

e8e2bd792b359d94b0c80a4aae439f84bd92373d
SHA256

7b736f0bd811f5fef7955f90f90b4f6d16e557f1f9eb9c7edd838d1d6cb6c295
SHA512

4538dd323b9d830ebb059a4f2e8ea849cdea3ed5f8caaa6695d715d5b9770c2caa3d70285378aebe8b880507f01bcfbbfef89e13cf5fb7207d577d856a9937cd
SSDEEP

3072:PJoN62wGXSwwdBMJJRu8kysNJR1yCSbKtlOnsPTSR:ef2XMJjfkysNJR1y/7ns

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

arri

Decoy

caixinhadesom.com

thoughtroad.com

netexpertos.com

bmsiaccesshk.com

workingwithcomplexity.com

nixbik.com

hebedsa.com

retirednightowl.com

221791.com

zestboardgames.com

dangdike.net

jitclw.com

vplike.com

huifengnf.com

worcesterhistory.store

koli-skrap.com

lheteclase.quest

emilio-m.com

719941.com

anapriscilamarketing.com

Targets

- Target
  
  7b736f0bd811f5fef7955f90f90b4f6d16e557f1f9eb9c7edd838d1d6cb6c295
- Size
  
  168KB
- MD5
  
  dcab5f61361dc82036f2802ef20eac94
- SHA1
  
  e8e2bd792b359d94b0c80a4aae439f84bd92373d
- SHA256
  
  7b736f0bd811f5fef7955f90f90b4f6d16e557f1f9eb9c7edd838d1d6cb6c295
- SHA512
  
  4538dd323b9d830ebb059a4f2e8ea849cdea3ed5f8caaa6695d715d5b9770c2caa3d70285378aebe8b880507f01bcfbbfef89e13cf5fb7207d577d856a9937cd
- SSDEEP
  
  3072:PJoN62wGXSwwdBMJJRu8kysNJR1yCSbKtlOnsPTSR:ef2XMJjfkysNJR1y/7ns
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2