xloader

General

Target

b6f5829e3b28920a0a7db5eee4a52da0883427a7062f549790818d0783d09bec
Size

164KB
Sample

241121-zj32dsxnas
MD5

53173e701ca77f42924417d75d31793f
SHA1

75ee9dd66604f609e20b3262f1525357b0828c6f
SHA256

b6f5829e3b28920a0a7db5eee4a52da0883427a7062f549790818d0783d09bec
SHA512

23456ed07262f0af987106bd2c659c8608636465ed4ee8b603f867fb7b18c38f91e56472b9fa04ddcaa7e856fbccfa3c5a643dfb464acacbd6065a03e87e9c83
SSDEEP

3072:aCpMz/82MbKNoXcZMpcqUhPUvS9vHKn7sjQb3ItI2lwNwr14Q:aVz/AWYAMpkNUq9vHKIq3I6L01

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

n8di

Decoy

hickoryfalls-pm.com

coton-house.com

thesoundsofhealing.com

bendsolargenerator.com

heritagesolarenergy.com

ofertassuvbraorg.com

sharpedge.ltd

howtowindows10.com

the-maillard-effect.com

myguyhigh.com

btgmic.com

linguimatics.com

jervinse.com

sandrasmit.club

allianceenterprise.net

gav-gav.net

dunvilleconsulting.com

cleanrolled.com

getmorevacations.com

pd-christmasparty.com

Targets

- Target
  
  b6f5829e3b28920a0a7db5eee4a52da0883427a7062f549790818d0783d09bec
- Size
  
  164KB
- MD5
  
  53173e701ca77f42924417d75d31793f
- SHA1
  
  75ee9dd66604f609e20b3262f1525357b0828c6f
- SHA256
  
  b6f5829e3b28920a0a7db5eee4a52da0883427a7062f549790818d0783d09bec
- SHA512
  
  23456ed07262f0af987106bd2c659c8608636465ed4ee8b603f867fb7b18c38f91e56472b9fa04ddcaa7e856fbccfa3c5a643dfb464acacbd6065a03e87e9c83
- SSDEEP
  
  3072:aCpMz/82MbKNoXcZMpcqUhPUvS9vHKn7sjQb3ItI2lwNwr14Q:aVz/AWYAMpkNUq9vHKIq3I6L01
Score

10^/10

xloader n8di discovery loader rat
- Xloader
  Xloader is a rebranded version of Formbook malware.
  loader xloader
- Xloader family
  xloader
- Xloader payload
  rat
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

Xloader family

Xloader payload

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2