xloader | 09b7236906e1f03e86df9f15161d5b93fb75260761c360013b02f5cab8c94877

General

Target

09b7236906e1f03e86df9f15161d5b93fb75260761c360013b02f5cab8c94877
Size

164KB
Sample

241121-yxy4xs1kfr
MD5

2a0dc46f0732c4e63a26030b96493ebc
SHA1

9691898c3dc2af6101ae9cd5e59456e7b1e386c2
SHA256

09b7236906e1f03e86df9f15161d5b93fb75260761c360013b02f5cab8c94877
SHA512

d5b3254b6c014da0c2a812394e7cef224917c3bbf545c487f242cb49ba6d8df5390e263de2dc205487591fde583da43ae12124db2532452a5adfff35ff5fb8b5
SSDEEP

3072:TJ8A82D/ROcQA0MYRXlD/cvENYdtwaaqlHpHyn8+Sla4cei4Ou:660RMYR1TcMNYdtLaqlHpHynDMcei4v

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

fg6s

Decoy

fairshakeforfarmers.com

pierpontlaw.com

expertnomad.com

ishhs.xyz

quotextaiwan.com

thaivisapro.com

madrassat-al-manahil.com

whf5.xyz

dutchpetfelt.com

wizard-nt.store

edfneu.com

zf0.net

hbxft.com

hugevari.com

websitefast.online

maisoncb.com

lghl56.com

donajisf.com

alexandertaylorforhiggins.com

evaz2.xyz

Targets

- Target
  
  09b7236906e1f03e86df9f15161d5b93fb75260761c360013b02f5cab8c94877
- Size
  
  164KB
- MD5
  
  2a0dc46f0732c4e63a26030b96493ebc
- SHA1
  
  9691898c3dc2af6101ae9cd5e59456e7b1e386c2
- SHA256
  
  09b7236906e1f03e86df9f15161d5b93fb75260761c360013b02f5cab8c94877
- SHA512
  
  d5b3254b6c014da0c2a812394e7cef224917c3bbf545c487f242cb49ba6d8df5390e263de2dc205487591fde583da43ae12124db2532452a5adfff35ff5fb8b5
- SSDEEP
  
  3072:TJ8A82D/ROcQA0MYRXlD/cvENYdtwaaqlHpHyn8+Sla4cei4Ou:660RMYR1TcMNYdtLaqlHpHynDMcei4v
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2