xloader | 1fba00a27b570385511a8c1eb063cc85654ac641185fe6e12df0ab8c8d7f0087

General

Target

1fba00a27b570385511a8c1eb063cc85654ac641185fe6e12df0ab8c8d7f0087
Size

164KB
Sample

241121-ymt28awkgv
MD5

1304d2d4779fb3feb9dc8515b861e142
SHA1

79ccf01d515027cdb0c6b3aa87170d23a2fd23c8
SHA256

1fba00a27b570385511a8c1eb063cc85654ac641185fe6e12df0ab8c8d7f0087
SHA512

923580fc9fa37393429ac5f0229c92741475865e5506601d555aa06d1279f0237d40b57271408539f27804294bc577df8a1db19d97f981fadf07a023b2817daf
SSDEEP

3072:HKpEgX2wa3blcL3M29lHvMpTF5NrODUEl+7xE1h0aEyBUyLI/x:Hdgm2TM2LPszNrO7kKwRqx8/

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

b6sq

Decoy

online-arbeiten.net

thegreatkitchen.com

ibecursos.com

malibumensretreat.com

refreshpad.com

onlinemusicfestival.store

sevenfigureaffiliatesecrets.com

zero-infekcji.com

domdata.pro

3nvud.info

dovvnergroup.com

darumallc.com

fileparrot.com

gzzhetaizy.com

workforma.com

bunjabaits.com

ohmisoul.com

caroleitalo.com

crice.net

1680557.com

Targets

- Target
  
  1fba00a27b570385511a8c1eb063cc85654ac641185fe6e12df0ab8c8d7f0087
- Size
  
  164KB
- MD5
  
  1304d2d4779fb3feb9dc8515b861e142
- SHA1
  
  79ccf01d515027cdb0c6b3aa87170d23a2fd23c8
- SHA256
  
  1fba00a27b570385511a8c1eb063cc85654ac641185fe6e12df0ab8c8d7f0087
- SHA512
  
  923580fc9fa37393429ac5f0229c92741475865e5506601d555aa06d1279f0237d40b57271408539f27804294bc577df8a1db19d97f981fadf07a023b2817daf
- SSDEEP
  
  3072:HKpEgX2wa3blcL3M29lHvMpTF5NrODUEl+7xE1h0aEyBUyLI/x:Hdgm2TM2LPszNrO7kKwRqx8/
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2