xloader | fa67f8c746665f1bfe500bb4c880e3730b344164905b5ee7130bb42c36f95298

General

Target

fa67f8c746665f1bfe500bb4c880e3730b344164905b5ee7130bb42c36f95298
Size

164KB
Sample

241121-yvpsga1jfk
MD5

b29bf8fd52c91da66d67152623d673d8
SHA1

6e83713fb54744c1d816ab886d3eeb86cdb7e364
SHA256

fa67f8c746665f1bfe500bb4c880e3730b344164905b5ee7130bb42c36f95298
SHA512

8064464f6efb929627f61acd91b0d0170d43fa57fddf408e47d5ed68850fa83e38c2cce2ba9f9b47eb42c861f56fc35328d04746bfac6716784e97d2b9fb0f85
SSDEEP

3072:TLJzAivj0r9JGvExU0MSNLSxex1MURQbfIIuwWdyXQ5Cp:T9/SnpMSh6O1MURMfIJyXaCp

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

w8rr

Decoy

musimack.agency

stockdatai.com

obsidianfields.net

idahogunpros.com

leochun.com

tancal.cat

theselfishbrandofficial.com

undegenerateness.info

nhanoon.com

y566.top

arabfinasgodes.com

goldenmetaverse.com

adilafinpay.com

biblicalcaffeine365.com

golgesiz.net

hsshengri.com

bydarcy.net

sevichhar.com

sanjeshgaraneh.com

femdomfilms.biz

Targets

- Target
  
  fa67f8c746665f1bfe500bb4c880e3730b344164905b5ee7130bb42c36f95298
- Size
  
  164KB
- MD5
  
  b29bf8fd52c91da66d67152623d673d8
- SHA1
  
  6e83713fb54744c1d816ab886d3eeb86cdb7e364
- SHA256
  
  fa67f8c746665f1bfe500bb4c880e3730b344164905b5ee7130bb42c36f95298
- SHA512
  
  8064464f6efb929627f61acd91b0d0170d43fa57fddf408e47d5ed68850fa83e38c2cce2ba9f9b47eb42c861f56fc35328d04746bfac6716784e97d2b9fb0f85
- SSDEEP
  
  3072:TLJzAivj0r9JGvExU0MSNLSxex1MURQbfIIuwWdyXQ5Cp:T9/SnpMSh6O1MURMfIJyXaCp
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2