xloader | 66b19cf8880c478d55905c413b1954f0f369fefee699bb136e8bf818ecba5ea0

General

Target

66b19cf8880c478d55905c413b1954f0f369fefee699bb136e8bf818ecba5ea0
Size

164KB
Sample

241121-zcvrfa1qhq
MD5

08b5c84b7bde4bac5144fcf416524b62
SHA1

992daeb69d3ad8e630501f603ce4fb2ec6d5d065
SHA256

66b19cf8880c478d55905c413b1954f0f369fefee699bb136e8bf818ecba5ea0
SHA512

2fd02b936251f65a6f2c815709ab3775afd95e8caad5a16c67aa18a4775cd2ce98ea430d6306ba88424085d53f983819ab69b1c497fc4589e1eef1161b0953f1
SSDEEP

3072:U/p6gL2OAdHVdajMuXobOy9YQyrNJkFHDbkuSq:UkgM3IMuYKy9YQmHkFH/kuB

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

a9hs

Decoy

foodify.info

facescreener.com

thrivewholesomenutrition.com

crypto-dream.com

winnersweepsexpress.com

controle1.email

heritage.solar

investigatoridaho.com

tiendasoportetec.com

thgn4.xyz

rajendrasodacenter.com

gazetnydom.com

visageasia.com

esport21.com

venetianmountains.com

assalygroup.com

anilkirana.com

w5gekar.xyz

a2wfinancial.net

gunnipes.com

Targets

- Target
  
  66b19cf8880c478d55905c413b1954f0f369fefee699bb136e8bf818ecba5ea0
- Size
  
  164KB
- MD5
  
  08b5c84b7bde4bac5144fcf416524b62
- SHA1
  
  992daeb69d3ad8e630501f603ce4fb2ec6d5d065
- SHA256
  
  66b19cf8880c478d55905c413b1954f0f369fefee699bb136e8bf818ecba5ea0
- SHA512
  
  2fd02b936251f65a6f2c815709ab3775afd95e8caad5a16c67aa18a4775cd2ce98ea430d6306ba88424085d53f983819ab69b1c497fc4589e1eef1161b0953f1
- SSDEEP
  
  3072:U/p6gL2OAdHVdajMuXobOy9YQyrNJkFHDbkuSq:UkgM3IMuYKy9YQmHkFH/kuB
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2