Overview

overview

10

Static

static

3

9b4de172aa...18.exe

windows7-x64

10

9b4de172aa...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9b4de172aa632a204daa8e8ff75f6826_JaffaCakes118

  • Size

    133KB

  • Sample

    241125-n18ses1qen

  • MD5

    9b4de172aa632a204daa8e8ff75f6826

  • SHA1

    da1f7578984a964b73d1730ab01d24aed19fd0e3

  • SHA256

    786b540920417403510c05ae05001136739ac44ea08edc2db8431e18040ec87b

  • SHA512

    1dd22971bae63e51a80c3250b86debfdb1fa28097d4abd05a6c51f0602b0cc1ba9ccfb0cfac922a5efd5ab3cf941b229d0f8577fad2dcc714da245684abf9b2e

  • SSDEEP

    3072:AkRd05tGFPerij5RMDLELd0LIkpnNb5M8CZLJpVh1Mx2:ANt+PeGR++eNF3Cd1h1Mx2

Score
10/10
xoristdiscoveryransomwarespywarestealer

Malware Config

Targets

    • Target

      9b4de172aa632a204daa8e8ff75f6826_JaffaCakes118

    • Size

      133KB

    • MD5

      9b4de172aa632a204daa8e8ff75f6826

    • SHA1

      da1f7578984a964b73d1730ab01d24aed19fd0e3

    • SHA256

      786b540920417403510c05ae05001136739ac44ea08edc2db8431e18040ec87b

    • SHA512

      1dd22971bae63e51a80c3250b86debfdb1fa28097d4abd05a6c51f0602b0cc1ba9ccfb0cfac922a5efd5ab3cf941b229d0f8577fad2dcc714da245684abf9b2e

    • SSDEEP

      3072:AkRd05tGFPerij5RMDLELd0LIkpnNb5M8CZLJpVh1Mx2:ANt+PeGR++eNF3Cd1h1Mx2

    Score
    10/10
    xoristdiscoveryransomwarespywarestealer

    • Detected Xorist Ransomware

    • Xorist Ransomware

      Xorist is a ransomware first seen in 2020.

      ransomwarexorist

    • Xorist family

      xorist

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks