Overview

overview

10

Static

static

10

9112f36164...af.exe

windows7-x64

1

9112f36164...af.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9112f3616475404b17d1858501212a9fc11ca721587ee73bc2712618d92122af

  • Size

    168KB

  • Sample

    241121-zcys4axlew

  • MD5

    2146ebd945cb9ee32ef9bef809f62f9c

  • SHA1

    521c501f2c5fd9c9861fe8eb2310dd6254d2b6d3

  • SHA256

    9112f3616475404b17d1858501212a9fc11ca721587ee73bc2712618d92122af

  • SHA512

    cc593f81ee3ab5404e3ab48ac46c8c8d5508b657e8336561ebf4b7815239a2e981013429addc5d5312ab259e46396edbaf680e7b762ee76dd1e68ecfb776554d

  • SSDEEP

    3072:KhJVcjA/9m3CdyY7MHxBA1e3bMcCQ7PKQkvQgMvvPlaQNL/5ARL:KBSWyWMHXAwrMcCs2UMQNLq

Score
10/10
xloaderahgediscoveryrat

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

ahge

Decoy

zlh.biz

suddennnnnnnnnnnn11.xyz

okanliving.com

shopeuphoricapparel.com

hcifo.com

haciendalosangeleslaguna.com

shineshaft.online

monclerjacketsusa.biz

uwuplay.com

psychicdeb.com

adonlet.com

theprogressivehomesteaders.com

ammaninstitute.com

sqpod.com

tropicbaywatergardens.net

yna901.net

3christinez.online

tastemon.com

karansabberwal.com

delegif.xyz

Targets

    • Target

      9112f3616475404b17d1858501212a9fc11ca721587ee73bc2712618d92122af

    • Size

      168KB

    • MD5

      2146ebd945cb9ee32ef9bef809f62f9c

    • SHA1

      521c501f2c5fd9c9861fe8eb2310dd6254d2b6d3

    • SHA256

      9112f3616475404b17d1858501212a9fc11ca721587ee73bc2712618d92122af

    • SHA512

      cc593f81ee3ab5404e3ab48ac46c8c8d5508b657e8336561ebf4b7815239a2e981013429addc5d5312ab259e46396edbaf680e7b762ee76dd1e68ecfb776554d

    • SSDEEP

      3072:KhJVcjA/9m3CdyY7MHxBA1e3bMcCQ7PKQkvQgMvvPlaQNL/5ARL:KBSWyWMHXAwrMcCs2UMQNLq

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks