General
-
Target
0x7-Protector-main.rar
-
Size
73.1MB
-
Sample
241205-v98mcavlcw
-
MD5
94736189d856595886f4ab6f8e963617
-
SHA1
dd5b430e926280db3e6f0cf7d51d63df81928eb5
-
SHA256
95028a2a9e05cb78b58f5775b7fc0c11b01e291baf57569669554217d3f087ee
-
SHA512
585b94de4b09f63a56d4c53736acb6b6a1ca7943c868975594320b3c5ea4c352af22b06a245305372ea631593f17ab7bf8ee621f6638271036259c900c2436d9
-
SSDEEP
1572864:DUKhpFXm/pNa3rbZPCGHnbLAw7nHoJPv8ScVcyEIOyBONyS/CCXfst:DUK/gra3paanI8rVBjOVCgst
Malware Config
Targets
-
-
Target
0x7-Protector-main.rar
-
Size
73.1MB
-
MD5
94736189d856595886f4ab6f8e963617
-
SHA1
dd5b430e926280db3e6f0cf7d51d63df81928eb5
-
SHA256
95028a2a9e05cb78b58f5775b7fc0c11b01e291baf57569669554217d3f087ee
-
SHA512
585b94de4b09f63a56d4c53736acb6b6a1ca7943c868975594320b3c5ea4c352af22b06a245305372ea631593f17ab7bf8ee621f6638271036259c900c2436d9
-
SSDEEP
1572864:DUKhpFXm/pNa3rbZPCGHnbLAw7nHoJPv8ScVcyEIOyBONyS/CCXfst:DUK/gra3paanI8rVBjOVCgst
Score10/10-
ElysiumStealer
ElysiumStealer (previously known as ZeromaxStealer) is an info stealer that can steal login credentials for various accounts.
-
ElysiumStealer Support DLL
-
Elysiumstealer family
-
Looks for VirtualBox Guest Additions in registry
-
Looks for VMWare Tools registry key
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Executes dropped EXE
-
Loads dropped DLL
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-