xloader | 2a15b550fd80131e5a8eda1de8297b180895091820f3ec1a2895dc79e525378f

General

Target

2a15b550fd80131e5a8eda1de8297b180895091820f3ec1a2895dc79e525378f
Size

164KB
Sample

241121-yztl8a1lek
MD5

75bf4319bbdea1762281813bdb2cb4ff
SHA1

8f26b791d3097ee6225c4412ab030a8cf8684997
SHA256

2a15b550fd80131e5a8eda1de8297b180895091820f3ec1a2895dc79e525378f
SHA512

d84d2d26b5d52f9be65bfa2477ab662f1b8e78953d5bfdae8bfd741fc93b62bda54adb3fe6922a0edd3bf8645479f0e11e59ce50087970a8500298ac7804514e
SSDEEP

3072:fTZpJNh2W5dtBPdEdMKaepIogdEBPcKxtkvbtiuGnrLd/p:fT9NptjEMK/SogdEPcfvbguGrpp

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

mnqo

Decoy

dcxp99.com

fe9muunu.xyz

shaytonabeauty.com

tonisu.com

swissbexchange.com

ultrasmartr.com

theblackforum.com

envirobombs.com

melagodocafe.com

lajmiplus.com

secureremoteworkforce.asia

lqwj0769.com

justiceforspeedy.com

boardsandbeamsdecor.com

voteforehrlich.com

pe-logn.com

icscci.net

price-hype.com

webecoplus.com

vcmetaverse.com

Targets

- Target
  
  2a15b550fd80131e5a8eda1de8297b180895091820f3ec1a2895dc79e525378f
- Size
  
  164KB
- MD5
  
  75bf4319bbdea1762281813bdb2cb4ff
- SHA1
  
  8f26b791d3097ee6225c4412ab030a8cf8684997
- SHA256
  
  2a15b550fd80131e5a8eda1de8297b180895091820f3ec1a2895dc79e525378f
- SHA512
  
  d84d2d26b5d52f9be65bfa2477ab662f1b8e78953d5bfdae8bfd741fc93b62bda54adb3fe6922a0edd3bf8645479f0e11e59ce50087970a8500298ac7804514e
- SSDEEP
  
  3072:fTZpJNh2W5dtBPdEdMKaepIogdEBPcKxtkvbtiuGnrLd/p:fT9NptjEMK/SogdEPcfvbguGrpp
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2