xloader | 1db212e73ac2f8a124da81510672302f8f345e12e2981178a8fc751aa1ae7ac6

General

Target

1db212e73ac2f8a124da81510672302f8f345e12e2981178a8fc751aa1ae7ac6
Size

164KB
Sample

241121-zjbl5sxmgw
MD5

54acde16b948f9673d715aa1974fc06c
SHA1

55d7d2441f69d53bd1b67e5470b4f5059d989d2e
SHA256

1db212e73ac2f8a124da81510672302f8f345e12e2981178a8fc751aa1ae7ac6
SHA512

199cb079dc8c5c2ac9d407eabd4d5eccb3b434afa65f64be4e0f2b725bf3f8bd6093d622d18a30488813352c4f60988c81fd001fc177990fe5bca586fe2a6cf0
SSDEEP

3072:E3JQyjVS0DIbasvpMCJBp+/LlddLFuGQC19G521tWOSBdFg:E+UPsxMCt8LPdLFmM9GgWBd

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

sued

Decoy

otazkystookt.quest

verskylife.rest

jhnana.com

latelequesuma.com

amanuensedigitale.com

nsrtx.com

sandospizzeria.com

easychu.com

yewryueui.store

grupoabintegra.com

daylliance.com

sddn58.xyz

datarbl.com

ristorantefontanamurata.com

sophietatarchuk.com

narcoz.club

velociget.com

279521.com

blandinelobela.com

fintekx.com

Targets

- Target
  
  1db212e73ac2f8a124da81510672302f8f345e12e2981178a8fc751aa1ae7ac6
- Size
  
  164KB
- MD5
  
  54acde16b948f9673d715aa1974fc06c
- SHA1
  
  55d7d2441f69d53bd1b67e5470b4f5059d989d2e
- SHA256
  
  1db212e73ac2f8a124da81510672302f8f345e12e2981178a8fc751aa1ae7ac6
- SHA512
  
  199cb079dc8c5c2ac9d407eabd4d5eccb3b434afa65f64be4e0f2b725bf3f8bd6093d622d18a30488813352c4f60988c81fd001fc177990fe5bca586fe2a6cf0
- SSDEEP
  
  3072:E3JQyjVS0DIbasvpMCJBp+/LlddLFuGQC19G521tWOSBdFg:E+UPsxMCt8LPdLFmM9GgWBd
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2