xloader | c9506fe4bd60abb409df70c0870b28a1aed8960284fd42e02d883ba887928aea

General

Target

c9506fe4bd60abb409df70c0870b28a1aed8960284fd42e02d883ba887928aea
Size

164KB
Sample

241121-ylt1tswkes
MD5

87e92fd765c4660771e4a70a396c5b6d
SHA1

f3c7af1ffef3fe22a176fd73ed865b5303c2ba27
SHA256

c9506fe4bd60abb409df70c0870b28a1aed8960284fd42e02d883ba887928aea
SHA512

cc8c079ff4429f82800557b158f4d8f7e643721d524a3e0c87bdd906cdaf1a0a7533716c626ef66bde4bb2b177e398746b7e0eedb4a8c28fa7f16a3c5fa24fb8
SSDEEP

3072:+6pVt2ReVLwWYMEg0E/mlN9gGnnFNJlanEdH:+wJG3MEzy49gGFDaEdH

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

cbgo

Decoy

santesha.com

britneysbeautybar.com

sh-cy17.com

jeffcarveragency.com

3117111.com

sobrehosting.net

ddm123.xyz

toxcompliance.com

auditorydesigns.com

vliftfacial.com

ielhii.com

naameliss.com

ritualchariot.com

solchange.com

quatre-vingts.design

lawnmowermashine.com

braceletsstore.net

admappy.com

tollivercoltd.com

vaidix.com

Targets

- Target
  
  c9506fe4bd60abb409df70c0870b28a1aed8960284fd42e02d883ba887928aea
- Size
  
  164KB
- MD5
  
  87e92fd765c4660771e4a70a396c5b6d
- SHA1
  
  f3c7af1ffef3fe22a176fd73ed865b5303c2ba27
- SHA256
  
  c9506fe4bd60abb409df70c0870b28a1aed8960284fd42e02d883ba887928aea
- SHA512
  
  cc8c079ff4429f82800557b158f4d8f7e643721d524a3e0c87bdd906cdaf1a0a7533716c626ef66bde4bb2b177e398746b7e0eedb4a8c28fa7f16a3c5fa24fb8
- SSDEEP
  
  3072:+6pVt2ReVLwWYMEg0E/mlN9gGnnFNJlanEdH:+wJG3MEzy49gGFDaEdH
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2