xloader | b6f5228c329ccccf84cea2cce242534d9989b78fa25d48147e685606cd3fd7b0

General

Target

b6f5228c329ccccf84cea2cce242534d9989b78fa25d48147e685606cd3fd7b0
Size

164KB
Sample

241121-zbfacs1qfk
MD5

616587278893149611d82849c2772895
SHA1

7ea765f606448eb2447f3b67d74f27acc54eb7bb
SHA256

b6f5228c329ccccf84cea2cce242534d9989b78fa25d48147e685606cd3fd7b0
SHA512

b7d4058a8015b16c443044d4f7242b505016a7f982a6ee20e981ece412d000f61bb6fb81f1ad927b9a86e5ddd97cd260ce48461b7a48acb9542f74b36f953413
SSDEEP

3072:IQptT723dQM4BKIMQY8KhN7iy3ac942L4oRl796oiGEC:IiT1hPMN9htiyqcG2LjThE/

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

xc52

Decoy

thelukeliu.com

solarpointinc.com

41mpt.xyz

giangsontaikhoi.com

bqyiiq.space

aguw.top

xetnghiemdany.com

xn--jsrs15bbg5a.com

xcflora.com

socfasderldecv.com

vitginmobile.com

myvirtualtrophy.com

zubr-service.online

saremira.com

baoanforum.com

pizzafolk.net

clararsjajno.quest

beennow.com

sumou-sa.com

sondelicias.com

Targets

- Target
  
  b6f5228c329ccccf84cea2cce242534d9989b78fa25d48147e685606cd3fd7b0
- Size
  
  164KB
- MD5
  
  616587278893149611d82849c2772895
- SHA1
  
  7ea765f606448eb2447f3b67d74f27acc54eb7bb
- SHA256
  
  b6f5228c329ccccf84cea2cce242534d9989b78fa25d48147e685606cd3fd7b0
- SHA512
  
  b7d4058a8015b16c443044d4f7242b505016a7f982a6ee20e981ece412d000f61bb6fb81f1ad927b9a86e5ddd97cd260ce48461b7a48acb9542f74b36f953413
- SSDEEP
  
  3072:IQptT723dQM4BKIMQY8KhN7iy3ac942L4oRl796oiGEC:IiT1hPMN9htiyqcG2LjThE/
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2