xloader | 5af0cfb9787d350970aae722dead60552905ee0e3c9b032c690678684e3c061e

General

Target

5af0cfb9787d350970aae722dead60552905ee0e3c9b032c690678684e3c061e
Size

164KB
Sample

241121-ypqgtazqej
MD5

cacee4d459f33c0099d2688cd2eff79f
SHA1

ba03bf906e79cf72092104c8c37c4cfa54b28efe
SHA256

5af0cfb9787d350970aae722dead60552905ee0e3c9b032c690678684e3c061e
SHA512

72a74e738795868ccbadb8d22872597007dc944df9c59f8560d9787425a1f65e2494213bebf2ea63d3b3cbcbf9236828521b09db880eb23334e060d607d61e6c
SSDEEP

3072:5lJmyFjNt/mGQj5XM6XUf0CacmVp6I+VpP7vZHJOe:5+DxhM6Ef/acmVp6RVpP7vLO

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

nug3

Decoy

movinggameplans.net

sunrisetillsunuptow.com

vessaifeilde.quest

ov294.com

baobabbijoux.com

startuitive.com

sharj4030.online

neogenesivenice.com

timopartanen.com

julianaeclarindo.com

xbtiyu.com

tile666.com

hmgame668.com

johnfletcherllc.com

lingkarlengan.com

fdiqw.com

pathsat.sbs

age-oldpklduy.xyz

0876jz.com

misight1day.lat

Targets

- Target
  
  5af0cfb9787d350970aae722dead60552905ee0e3c9b032c690678684e3c061e
- Size
  
  164KB
- MD5
  
  cacee4d459f33c0099d2688cd2eff79f
- SHA1
  
  ba03bf906e79cf72092104c8c37c4cfa54b28efe
- SHA256
  
  5af0cfb9787d350970aae722dead60552905ee0e3c9b032c690678684e3c061e
- SHA512
  
  72a74e738795868ccbadb8d22872597007dc944df9c59f8560d9787425a1f65e2494213bebf2ea63d3b3cbcbf9236828521b09db880eb23334e060d607d61e6c
- SSDEEP
  
  3072:5lJmyFjNt/mGQj5XM6XUf0CacmVp6I+VpP7vZHJOe:5+DxhM6Ef/acmVp6RVpP7vLO
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2