General

  • Target

    launcher.exe

  • Size

    2.7MB

  • Sample

    241212-e1meravnap

  • MD5

    d0a533b0a373fde0f588b82e7ea0c101

  • SHA1

    2f57d98f206399b90fe16251290f1f5e9004cb7b

  • SHA256

    5d8a71f3c3ce813bb7348245e82c92eff58aac97f27eb93b111e0725a39cee2e

  • SHA512

    649e0b1bcaf321cfd7115990b98f21a41a170d02d8f8145f2b7dfa20f82ab7241bc4f0f39e09d20f809785bb9d86ac53007c7d55a7cbdfd23c327dd4abc5d9ea

  • SSDEEP

    49152:aKvJJYNPp6UhTz8AZbRmaYxTxfDjHyuQDc6p:raUDjSuw

Score
10/10

Malware Config

Extracted

Family

meduza

C2

193.3.19.151

Attributes
  • anti_dbg

    true

  • anti_vm

    true

  • build_name

    hdont

  • extensions

    .txt

  • grabber_max_size

    4.194304e+06

  • port

    15666

  • self_destruct

    false

Targets

    • Target

      launcher.exe

    • Size

      2.7MB

    • MD5

      d0a533b0a373fde0f588b82e7ea0c101

    • SHA1

      2f57d98f206399b90fe16251290f1f5e9004cb7b

    • SHA256

      5d8a71f3c3ce813bb7348245e82c92eff58aac97f27eb93b111e0725a39cee2e

    • SHA512

      649e0b1bcaf321cfd7115990b98f21a41a170d02d8f8145f2b7dfa20f82ab7241bc4f0f39e09d20f809785bb9d86ac53007c7d55a7cbdfd23c327dd4abc5d9ea

    • SSDEEP

      49152:aKvJJYNPp6UhTz8AZbRmaYxTxfDjHyuQDc6p:raUDjSuw

    Score
    10/10
    • Meduza

      Meduza is a crypto wallet and info stealer written in C++.

    • Meduza Stealer payload

    • Meduza family

    • Downloads MZ/PE file

MITRE ATT&CK Matrix

Tasks