Overview

overview

10

Static

static

10

XSSLite St...ber.js

windows11-21h2-x64

3

XSSLite St...ets.js

windows11-21h2-x64

3

XSSLite St...ram.js

windows11-21h2-x64

3

XSSLite St...ion.js

windows11-21h2-x64

3

XSSLite St...ra.dll

windows11-21h2-x64

1

XSSLite St...dy.dll

windows11-21h2-x64

1

XSSLite St...dy.dll

windows11-21h2-x64

1

XSSLite St...dy.dll

windows11-21h2-x64

1

XSSLite St...on.dll

windows11-21h2-x64

1

XSSLite St...rs.dll

windows11-21h2-x64

1

XSSLite St...ed.dll

windows11-21h2-x64

1

XSSLite St...db.dll

windows11-21h2-x64

1

XSSLite St...ks.dll

windows11-21h2-x64

1

XSSLite St...il.dll

windows11-21h2-x64

1

XSSLite St...dy.dll

windows11-21h2-x64

1

XSSLite St...on.dll

windows11-21h2-x64

1

XSSLite St...es.dll

windows11-21h2-x64

1

XSSLite St...es.dll

windows11-21h2-x64

1

XSSLite St...es.dll

windows11-21h2-x64

1

XSSLite St...rp.dll

windows11-21h2-x64

1

XSSLite St...rp.dll

windows11-21h2-x64

1

XSSLite St...rp.dll

windows11-21h2-x64

1

XSSLite St...rp.dll

windows11-21h2-x64

1

XSSLite St...rp.dll

windows11-21h2-x64

1

XSSLite St...rp.dll

windows11-21h2-x64

1

XSSLite St...es.dll

windows11-21h2-x64

1

XSSLite St...xt.dll

windows11-21h2-x64

1

XSSLite St...nt.dll

windows11-21h2-x64

1

XSSLite St...ic.dll

windows11-21h2-x64

1

XSSLite St...ed.dll

windows11-21h2-x64

1

XSSLite St...ns.dll

windows11-21h2-x64

1

XSSLite St...on.dll

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    XSSLite Stealer.zip

  • Size

    85.1MB

  • Sample

    241220-1frdvsvnfl

  • MD5

    c11ab323289928f5c675f1512f84842e

  • SHA1

    dd837ab21971f35ae1175f8bc1a662b91126f5db

  • SHA256

    90d015b08c37c5a9e9f42ada10ec29a5d34d5d6e63373eb5da9e5af6b485e688

  • SHA512

    9b781f7a68708fc89432cfbbc7607ee4c74b17b1b3c5fa3addd41a0d057bac20f492307f1446803e1bc0b1944acb1aab95c018d73ef2f374f33d3c0c6453746d

  • SSDEEP

    1572864:jwjvbuLAGSQPnwT25zin9KPzOsGaHDRfKZGD9K9uBukxk4Y+xRV5+aYPZ:jwL9GSq7in9KPzOsGaH0uBukVY+xRVkJ

Score
10/10
neshtaexecution

Malware Config

Targets

    • Target

      XSSLite Stealer/Client/Client/Grabber/Grabber.cs

    • Size

      12KB

    • MD5

      de412f286c65eaf43f1075b76fcf0e9e

    • SHA1

      d6a99b7493e307da565fec1adb0b91e49bbe6086

    • SHA256

      d67bda9b636a46e6ab86a96ebe07c63502d2501c8199438fd8cd9cc983792d9b

    • SHA512

      3308cc741aa18cc4bec08e5be63bb82e21cb5e462759eb10601fc7a4b218b5c45cf1ba723fb94f4fe0f34265cc9c574076f399ebe2e174937590de6254b23861

    • SSDEEP

      192:9cQm0PpUu7AZSuVkTzes9ayoTMCopxklhJyJozWi/o:9cX0OVZSMues98TMCrhip

    Score
    3/10
    execution
    behavioral1

    • Target

      XSSLite Stealer/Client/Client/Grabber/Wallets.cs

    • Size

      2KB

    • MD5

      24858208384f2d274bb1fbd767dff89b

    • SHA1

      c20567fd0c094edef42694622e312eb881503f3d

    • SHA256

      156d6b65c8457675fb19b0db146de52e0a059dc32907ce7e58452b12ce9063b1

    • SHA512

      df70400eac174b027e68aee4aa35bceb74c9dc6064a8c9901efaf9c490e800af98c82e8b5d71d70a452301dc3c3e967b50b9e04a6ac64a7ebc77359c9b8ea088

    Score
    3/10
    execution
    behavioral2

    • Target

      XSSLite Stealer/Client/Client/Program.cs

    • Size

      4KB

    • MD5

      d75562856b6fd3474e6d9d76e820027e

    • SHA1

      69930ff9ff36ed5d7d0c3c8cb1ebb0d2de84c75b

    • SHA256

      41e0dd490ab6b05d58d803549da4b76ebbd3cff0f52662016e3434002eef6341

    • SHA512

      ca16ad68266e64a323a294817d7ca4abb0d8bbe4b4329007c362d182c8f1be640acbc8a9a773c1802252cacbfc2a98a24c88e9c2f4688bf2eff3d0f23e1ae24c

    • SSDEEP

      48:C9oUzzXA3VGZn8CjJwq2WkPT2qc2GkwutcEEwxJUnqt9O10XKV0RW2pts:SoUzzX2VO8CFkKbQW+xJUq0P0RBs

    Score
    3/10
    execution
    behavioral3

    • Target

      XSSLite Stealer/Client/Client/Protection.cs

    • Size

      1KB

    • MD5

      94cdb0f894ac396431ab4d169af28eb6

    • SHA1

      420a361e0b5037416dc279b31d252aed092a7428

    • SHA256

      4c97acd3539e693c35579a44f829be7d30acce14c84f600a99e66572d2e84008

    • SHA512

      63f35ae42e5055b65df3e61a621dfd21a87c282c4240d292ee60ab06157b8e9f2eae6461eff7e6fd0e06b36f45790e0c926a45df8fe66390a7c1a55ff524a030

    Score
    3/10
    execution
    behavioral4

    • Target

      XSSLite Stealer/Client/packages/Costura.Fody.5.7.0/lib/netstandard1.0/Costura.dll

    • Size

      4KB

    • MD5

      501981c7fc457d59238eb99780efb615

    • SHA1

      f1f25c01f6acf33bdd62c4f82d3ef078e76f0906

    • SHA256

      41bb464ac7c0d192641077e44a59d7d89860c3c620a59961f2fc4a4be47deae3

    • SHA512

      5921d0662add6c8aa075106878cc56335ccbf059d8bc7f359fe9e02a52ec657c3e5df1c718929564c09f205e4bd299b086f3e7424141f5e55ed0d756f65ee1e8

    • SSDEEP

      48:6F+lni2qJfjVRPGwzCo4MhTN0KDdilETrVsH4/QWk1qyFVT2IbG:7g7KedGEiYIWM2

    Score
    1/10
    behavioral5

    • Target

      XSSLite Stealer/Client/packages/Costura.Fody.5.7.0/netclassicweaver/Costura.Fody.dll

    • Size

      193KB

    • MD5

      d6ef4e35f96629ba9f9176cfc4d93b38

    • SHA1

      2adee63def25e2a5993ea793180634a1d2946fd7

    • SHA256

      f925017acb08ca6f8e99cd28cd6140c153efe5b241111de36b8b917a302794fa

    • SHA512

      d7abb5932d7b0521816137c946a80400cf573a5047c440b9a78c4670b6926e7ae130608e6b2fa0b5e65478bf986d0e089168a80e13770a0bf91ea7a5529dd715

    • SSDEEP

      3072:y+bjLBzNAiYBnAjJuCxp8kvyUUs38lsDJ5Qt/Dxk4HA7lmmVtGzGzxnzmoMi:y+bjdzNA64DlAX2zGzpzm

    Score
    1/10
    behavioral6

    • Target

      XSSLite Stealer/Client/packages/Costura.Fody.5.7.0/netstandardweaver/Costura.Fody.dll

    • Size

      196KB

    • MD5

      cc6fe95d22242e0eaecc751647bb58af

    • SHA1

      1aaa019f088fdd20862f97217bd347331b5bd714

    • SHA256

      f8d0bbf51d54411c96b26fcee9a60d73b1170c40acb5586c9112f5bee6a23acc

    • SHA512

      7e6df47eef146a9a87633ba6183121e1fffd1c3e330a2cc22bb0d915d54e162d589b8250ce867c3002fd49668f704adc0cb465afd8deed1efe7710b6e7eaacec

    • SSDEEP

      3072:t+b5zlAkYBmrJuCxp8kvyUUs38lsDJ5Qt/Dxk4HA7lmmVtGzGzeIq5zhou:t+b5zlAS4DlAX2zGz1qla

    Score
    1/10
    behavioral7

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netclassictask/Fody.dll

    • Size

      58KB

    • MD5

      7dda117ba4a540765add988d4d703962

    • SHA1

      a493920aabd59e97e675cd6da0d75100d61be12b

    • SHA256

      b545aa2bb6b33809dea72a2262a0f403d87a05899d5bbd49727ef5b5b8a962e6

    • SHA512

      b425cde90bf5bc3d2d816f683bb3a9a6d3c352d1615157db7824734a85ff74c33e561d143a7286cdd450b6e3ad647a11eb77ba314ccecbbccb209ada44822807

    • SSDEEP

      1536:IMUQOggWoGnvMndHuu+VYZ8EiQRDrE+LWDMoe77NhU:IMUZGQVr7mMomNhU

    Score
    1/10
    behavioral8

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netclassictask/FodyCommon.dll

    • Size

      16KB

    • MD5

      092f6306105fc05fa41df80716e2e75e

    • SHA1

      13d0830daf46109c072f511dc6eb9e582c87f92d

    • SHA256

      868d483397b2d755c8685de03b76b143f590625ecaad169a575ab91afd1f3e2d

    • SHA512

      3f58ccaa5a205156979debfdcfda3c991f28e1c6013823d048d7a7d0d822f2fff23d180b7083b89f2ef9877590daf29faf8f02d33b5b9dcb963bbb572a2f442e

    • SSDEEP

      192:kzoOKhlMEblgkmjKGQ3N8LcY0INjE7+A+Zw1jsTPFArFbuiSGglbX9NVPZnPCX7o:L1lgkmji3N890IPwWTUglJNVq5Qh

    Score
    1/10
    behavioral9

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netclassictask/FodyHelpers.dll

    • Size

      50KB

    • MD5

      ebce73d9cc1a6cab8fddc3cede584908

    • SHA1

      ad2c9ef51bc8b1ad166178bd3cb275e4a130fe6c

    • SHA256

      7569aacb337116514039b35226f46d0e02672c91861f7daf6cc19923b7529556

    • SHA512

      ddebb98e5562c511eda28ffdcaa7316cc00505de35d3ca441e68326ae9792e0410fbb2dec9560ff5847e8e2352e97ad5c00e8c24375a3dc60fd6afa7b06eb271

    • SSDEEP

      768:QToWZwKWMC/vVbfOxF0ajPVqZ6lYThQRP8DPkPEgf8ZDlRT:QTEpM8AZVk6lTjtapRT

    Score
    1/10
    behavioral10

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netclassictask/FodyIsolated.dll

    • Size

      41KB

    • MD5

      48baf2c072c156438c77885e6c67c20c

    • SHA1

      547af9da0e25a01b801d544ca3dad80ee6c5cca1

    • SHA256

      3eeac2f97aed60bcd68cda1e7ff58cbec7ac63390901faeb2e14b6085a80bbae

    • SHA512

      c0d350d5667ee40da09d594ebba4e4e0611e6f6317ce7fcbf5f192df733c65181d3ff650993a216909acf3259a054e4972af30a6b1f57e6b21adcd81a19e1b4f

    • SSDEEP

      384:KfPU9AmZhPuGTWmAcrzl5h70Qil8nroh8PuBPOf+rMSguIBkjvM1k/r+MpCNRJUc:UmZVu2DFeOKppkRJU+UWE1qvv9A4fN

    Score
    1/10
    behavioral11

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netclassictask/Mono.Cecil.Pdb.dll

    • Size

      87KB

    • MD5

      bdfe84812d447cf67dc0f9b5f7b3cda8

    • SHA1

      43de7a2e4f9b6e81d91cf6b56c2ef6e9d562649e

    • SHA256

      25d1f19121dd780de3c8ac357a5436f7c59e3e63e2dd1d262a02092f5c371dff

    • SHA512

      749eade2e98b27ef828178e52f50cefc8f88eb0a3e8049d6fa9460fcf3a9591b9d5eeec1abbf2e923ff4852b4ab2fb9c5f065840c921895359df4fe7ce574851

    • SSDEEP

      1536:BfCEVETXo3f+yAvaDvNaPS/vSC6G+ALYKXgAJGsZAEcbxvjCXe6:9uiQPwvH6bArVJGXE+xveXe6

    Score
    1/10
    behavioral12

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netclassictask/Mono.Cecil.Rocks.dll

    • Size

      29KB

    • MD5

      afe27ac28c4d07940f7d0d61f132de72

    • SHA1

      c6b4910d00927c29e3d8e24e62c2210bca1544f4

    • SHA256

      7284e7b0faa5e731cb0e500e565e3000bad5309cb9f6f3ee6ac9aa59d9eaeab0

    • SHA512

      484b6672b9233c965543ffbf71a92dee9155b02b85376b20526288902521ae5e3e578c62f35759fec6f0d074ca51de71b9ae35f1ad2126f03b14c4066cd8728f

    • SSDEEP

      768:kgVxLIKwiowt0j1KODTq7/hRssvewJ1pPFpcfH:p/6wtm1J3Wjssvewev

    Score
    1/10
    behavioral13

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netclassictask/Mono.Cecil.dll

    • Size

      352KB

    • MD5

      cbafabf0b407a1d4067b25622208fc26

    • SHA1

      b24561f32d768e9a3d23991bd6e2cd02c0dbad5f

    • SHA256

      f59d71e352412b85888f2979b8fd5e61b9b41921f7ddf6b3a225ee326fde6f83

    • SHA512

      0e7a54436d70f8bd6561a1a07366045651ec40d91f0d1818a4725e8d8a7946a51c8e66c6436b839d1ea79f7abccfe3eca200b50068f598223d5afa4f81227571

    • SSDEEP

      6144:mHckN6HRz4pB+CaXTXmIKPGSDrtuQRSZ2yJH+dI69I:m8kCz4puTWIRWQQRSZ2ysI6

    Score
    1/10
    behavioral14

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netstandardtask/Fody.dll

    • Size

      58KB

    • MD5

      f3da383f71d301dbc99dffbb5e7cb4a3

    • SHA1

      68fbdd70f4f6149568f08459ec4985e24d7b3b7a

    • SHA256

      2bd065ff78d869a756af6662d25598c12f53601387b146846e225853b666c9d0

    • SHA512

      388f7ef532bb5c207860680ac8f448fdfed34f299715ba39faab6b1cfe327de8b9f6b2f7e932d7151f934dd765c03b1e117563b30e2bf20085b15ab87cb07cbc

    • SSDEEP

      1536:eMUQOggWoGnvMndHuu+VYZ8i758c6+WWO6oQVyKvDEYG:eMUZJ5GN6oQo8EYG

    Score
    1/10
    behavioral15

    • Target

      XSSLite Stealer/Client/packages/Fody.6.8.0/netstandardtask/FodyCommon.dll

    • Size

      19KB

    • MD5

      21564e498f351d3c816b750c0f1de911

    • SHA1

      6125c62d83ad81b16397554907e88c39a92c4637

    • SHA256

      4132198b080222777522bc0680c15e086ac594b88ec45fe75f5a377a1c2004dd

    • SHA512

      d68fe0bb8c592928c4386890b3d8cd12a14feb1b28599b12697506ee90d003c2b9e4cc10ce60f62310e284ba295924d22abfb8d2e59c97ab960b63a0061a0ed1

    • SSDEEP

      192:9mzoOK5hCbAGGDubqfYUDRn/0bm0ui/d7tyjS7+M+jw150QPtrFbuiSRF3VmlDJI:95CGDq7Ae//d7t4wIQC6JEkrPAPh

    Score
    1/10
    behavioral16

    • Target

      XSSLite Stealer/Client/packages/Microsoft.Bcl.AsyncInterfaces.8.0.0/lib/net462/Microsoft.Bcl.AsyncInterfaces.dll

    • Size

      26KB

    • MD5

      ff34978b62d5e0be84a895d9c30f99ae

    • SHA1

      74dc07a8cccee0ca3bf5cf64320230ca1a37ad85

    • SHA256

      80678203bd0203a6594f4e330b22543c0de5059382bb1c9334b7868b8f31b1bc

    • SHA512

      7f207f2e3f9f371b465bca5402db0e5cec3cb842a1f943d3e3dcedc8e5d134f58c7c4df99303c24501c103494b4f16160f86db80893779ce41b287a23574ee28

    • SSDEEP

      384:cOJWqnwCBbNAP0VES2j0cX6dAl+NWpVzrdcoquWeP/WxR5kHRN7dDFcYR9zPrf8O:culwCBhdVv2wK5fdcUtFFn9zT8pY

    Score
    1/10
    behavioral17

    • Target

      XSSLite Stealer/Client/packages/Microsoft.Bcl.AsyncInterfaces.8.0.0/lib/netstandard2.0/Microsoft.Bcl.AsyncInterfaces.dll

    • Size

      26KB

    • MD5

      c0da2ad16384a9c4dd9c411ebb330646

    • SHA1

      522dada541bf59299ec518042d5162da7d7bb87b

    • SHA256

      33e3c58d46c76d5535d7c24085957b7ccb7ce3815707300955a6309ecc2e81d1

    • SHA512

      1255e7130f204a585f25cb68ede2a3cfc6ac0eb1c0f0ff075198b4f2943ca703c6e849429acb83d21a7f684c261b46554f9baf6e8e235696ebd59202df10a54c

    • SSDEEP

      768:Iulwgl2xxrZ7VO26K5EcN+L/igQL9zRiO:BwLpBQKicNGigQhzUO

    Score
    1/10
    behavioral18

    • Target

      XSSLite Stealer/Client/packages/Microsoft.Bcl.AsyncInterfaces.8.0.0/lib/netstandard2.1/Microsoft.Bcl.AsyncInterfaces.dll

    • Size

      18KB

    • MD5

      b984be2a4fc05e9f83e7446b4455806d

    • SHA1

      3a9cd4a322a8f91e67552a87b079a4652805848a

    • SHA256

      136d5965cf4768e8420b547a8bddea882921f426c371833d558a858a2f0c235a

    • SHA512

      d0200ffceb4f850db6a7b3e1d7aab6b996ae8f26971472eca3e80d0ab4c763ff13f628a48c1ce02bb9d695a90986f872b81932ee8b7aa45b5cdf67080bb55b71

    • SSDEEP

      384:JbZwqhkB49n5q1WeP/WuTb2HRN7IPsWAR9zgX2iKdTS:FkBT5/iIkL9zRiKE

    Score
    1/10
    behavioral19

    • Target

      XSSLite Stealer/Client/packages/Microsoft.CSharp.4.7.0/lib/netcore50/Microsoft.CSharp.dll

    • Size

      439KB

    • MD5

      aa9022b9fe1b393a83bc504b463bea61

    • SHA1

      bc806d6884453bfae47001e44522edd7bab7814c

    • SHA256

      07874811f11bace15d1b9f29fa6a7f5fc30acb208b551dfad45a2295d5e758ed

    • SHA512

      13d16ef303307c59d4411877b259ada307ec2c3ebadc968379230ae4e66c1b2f86daaa846fd8f85aac7814d0e695f8f2821c0dfccdfab2fa62b995a7b23b3a01

    • SSDEEP

      12288:gJvUqjJeYPIIFSA74yEI/EzCY/Rg/IM4DbGfVH0:wvPjAYwIFSjbzCsDbGfVH

    Score
    1/10
    behavioral20

    • Target

      XSSLite Stealer/Client/packages/Microsoft.CSharp.4.7.0/lib/netstandard1.3/Microsoft.CSharp.dll

    • Size

      439KB

    • MD5

      aa9022b9fe1b393a83bc504b463bea61

    • SHA1

      bc806d6884453bfae47001e44522edd7bab7814c

    • SHA256

      07874811f11bace15d1b9f29fa6a7f5fc30acb208b551dfad45a2295d5e758ed

    • SHA512

      13d16ef303307c59d4411877b259ada307ec2c3ebadc968379230ae4e66c1b2f86daaa846fd8f85aac7814d0e695f8f2821c0dfccdfab2fa62b995a7b23b3a01

    • SSDEEP

      12288:gJvUqjJeYPIIFSA74yEI/EzCY/Rg/IM4DbGfVH0:wvPjAYwIFSjbzCsDbGfVH

    Score
    1/10
    behavioral21

    • Target

      XSSLite Stealer/Client/packages/Microsoft.CSharp.4.7.0/lib/netstandard2.0/Microsoft.CSharp.dll

    • Size

      295KB

    • MD5

      a62ac2aa81d70761b26202831e22c43f

    • SHA1

      e30683d052d82b592e464a1e900dfbba454a54d5

    • SHA256

      5abaa4603ea3d53e73ad5e151b9637f094db58ceae39f15c91219622b337e919

    • SHA512

      c79a73e6e2ebb200bf2e99f1edf4d35526ff64555e84017ab1868cc35bf15898b0cf3edc527f80c534b3c9635bed0c288dbadad35dfc47af2f1db39883a1d756

    • SSDEEP

      6144:5MsCfqudVKjZSkSNw1oxJFzYGLUaiqFtNqttPBjG3u9yHKGhkz59W:+sCfidSkSNw1oXFkG3u9yHQVM

    Score
    1/10
    behavioral22

    • Target

      XSSLite Stealer/Client/packages/Microsoft.CSharp.4.7.0/ref/netcore50/Microsoft.CSharp.dll

    • Size

      22KB

    • MD5

      ba74a797606e8147f5d348a7c2575998

    • SHA1

      33470432fd527b8733aba6078621cabac3a11057

    • SHA256

      6c01f94b1d0f9b93cdb7a57534ab82255ece2404000dd2648297fb27a78de560

    • SHA512

      d43996a7e60fc5ada5c5e74cc758c9cb84a60ec16af4fb220356b17eb5b611941dca74e3b9af24ccbf84098609b7692168d4bf48b09ddeeb315328b76f31d71d

    • SSDEEP

      384:t1lUfGzcoWf0xWKyAA0GftpBj+bdERHRN7GlraGcs7:LfdRiYbdEB08k

    Score
    1/10
    behavioral23

    • Target

      XSSLite Stealer/Client/packages/Microsoft.CSharp.4.7.0/ref/netstandard1.0/Microsoft.CSharp.dll

    • Size

      22KB

    • MD5

      ba74a797606e8147f5d348a7c2575998

    • SHA1

      33470432fd527b8733aba6078621cabac3a11057

    • SHA256

      6c01f94b1d0f9b93cdb7a57534ab82255ece2404000dd2648297fb27a78de560

    • SHA512

      d43996a7e60fc5ada5c5e74cc758c9cb84a60ec16af4fb220356b17eb5b611941dca74e3b9af24ccbf84098609b7692168d4bf48b09ddeeb315328b76f31d71d

    • SSDEEP

      384:t1lUfGzcoWf0xWKyAA0GftpBj+bdERHRN7GlraGcs7:LfdRiYbdEB08k

    Score
    1/10
    behavioral24

    • Target

      XSSLite Stealer/Client/packages/Microsoft.CSharp.4.7.0/ref/netstandard2.0/Microsoft.CSharp.dll

    • Size

      16KB

    • MD5

      8330e6fedd5c1ace17c79af93d6968b2

    • SHA1

      7129f2b6e6ebe580ea4ed8b45dc05532e2c4af95

    • SHA256

      93d38ed6258c6f02563527d70f3aa0167de6d588fd2420466208d180fb3e80ff

    • SHA512

      429347fb2759985c8cff3149fc2956c65cb0d1c89a526c82ebf3972b68cfe71a6eaf606e0ccd6e8891609532ed3cf5599537ecff3a7be198015ee36c542439db

    • SSDEEP

      384:uaMiJ9piVgfMlWf5w4W1QHRN7Wtol9bWlo:6V/78W4

    Score
    1/10
    behavioral25

    • Target

      XSSLite Stealer/Client/packages/NETStandard.Library.2.0.3/build/netstandard2.0/ref/Microsoft.Win32.Primitives.dll

    • Size

      20KB

    • MD5

      4d450bac47166dcd2296fa89c7f50746

    • SHA1

      bed20961d5d0be489f4528bd064089f566b13f66

    • SHA256

      548c3fddb30558ad6fd9f6d0b7490d9130b5b7a28ddb3f748c7521823175651a

    • SHA512

      f27784bc70dc0284fd3ea1d5a99b6d4f80d9e82b2233b8019f2d3b5d7e7fd8eff1cf48cf38dcab61fa3636486f518daff162ce11a82d0e0e0a5dbf078aed1420

    • SSDEEP

      384:jMIdoWhv3WzDzDm0GftpBjQaQHRN7h4lD16hzY:4Idv0VieLhK

    Score
    1/10
    behavioral26

    • Target

      XSSLite Stealer/Client/packages/NETStandard.Library.2.0.3/build/netstandard2.0/ref/System.AppContext.dll

    • Size

      20KB

    • MD5

      9a14ae2c699c7684696e8b7b206630f9

    • SHA1

      368b28d6ef056d3ecbceb11abdafda9a25a70a47

    • SHA256

      03be43f4faa2128f2c37a6f4142e4b2a78c7347ffc3fcc4b7f2878ff4ea3f3cf

    • SHA512

      42607595d540d312425c399dcf3300e64bce3dbbbbfa63cf8bcd4a348f0d705561f5967b3124fd04c6f445159319e836cbedaeb03c7a97be413dbfd20c935f1b

    • SSDEEP

      384:5xKJoPWoFWNvm0GftpBjKLaQHRN7+dlg+0wa:3KJoDmViIL+Xa

    Score
    1/10
    behavioral27

    • Target

      XSSLite Stealer/Client/packages/NETStandard.Library.2.0.3/build/netstandard2.0/ref/System.Collections.Concurrent.dll

    • Size

      20KB

    • MD5

      61e077134619673523947a31d4b2b24e

    • SHA1

      80fd6d30b87522cb225442ee17f80f0ab027d99f

    • SHA256

      4521214cc351eea35d3ab9ee8b59b2a5c22dfe1467c434d33d23064b93440d2a

    • SHA512

      5d36b439c0962ef4ec44305d1c2e98f2c1d18fccd457c4b439865ffe514e63a3826cedba99465171cfa2842e5d1d385b5d43d4b65518e299103558400d556ac2

    • SSDEEP

      384:Y3maiH8WOWkrWR5OZkum0GftpBj6jF5DaQHRN7DKlPpVh:Y7O8IoViQR5DLD2zh

    Score
    1/10
    behavioral28

    • Target

      XSSLite Stealer/Client/packages/NETStandard.Library.2.0.3/build/netstandard2.0/ref/System.Collections.NonGeneric.dll

    • Size

      20KB

    • MD5

      8dd237ebf23762bc63e07d5ec60daa8d

    • SHA1

      064526a4be160a3779f2cb5203e134875f0ed22b

    • SHA256

      c29f06343a5be5d642853ef37ac7854004c0c74884bd1885557fc90ce6d0ba90

    • SHA512

      ab345fb200e3b2e9a2d305b0dfe4e7c23511380d65c62bf7c3b6375ed791daecaa905ac51f5999b6be127209f783362ffc8d4dba9398b65dc1fac737df1b812f

    • SSDEEP

      384:IQonapnqiKywjoWUGWRDzDm0GftpBjxEX+aQHRN73lDCEedS:XDULYRVin1Lp1edS

    Score
    1/10
    behavioral29

    • Target

      XSSLite Stealer/Client/packages/NETStandard.Library.2.0.3/build/netstandard2.0/ref/System.Collections.Specialized.dll

    • Size

      20KB

    • MD5

      8f8f939323c9fbe5af7738be7e559f2c

    • SHA1

      c6e08715ce261e4a93bb3a435b5c8e9d3fdd5a29

    • SHA256

      3a7b50db13fc72aaca03f683f85455426aeddb4e67cf1f389d25d36f6a8bcbc7

    • SHA512

      73e69cb430130cc94ba45d3d27e201e8d43f81e37d02d1553f8f72f8872919d1ab7f55a3aa6b807c3fa589d4820c5ecc77817c777b198d1bf60e5503d0cc955b

    • SSDEEP

      384:9HLaEavIaaY6la6aIW9LWw1m0GftpBj7ZrXdaQHRN7Fmf9lg+0g5:wPvItYRNrHViNttLFmf/5

    Score
    1/10
    behavioral30

    • Target

      XSSLite Stealer/Client/packages/NETStandard.Library.2.0.3/build/netstandard2.0/ref/System.Collections.dll

    • Size

      21KB

    • MD5

      2545a7db43765afd6519d13a04bd1f26

    • SHA1

      666e8bd852150a4a36a63dd043562727772985f4

    • SHA256

      f387ca05ce6e507e81cfbfa619b52c1823a69b9b5dd5ee251b90762f0d4b180a

    • SHA512

      85612c0a217b3b627905d520009d54619ad519b02b2cdce6a1d17bf978cafabc15c059890c7f7f82fa57396e22a69f27f8af1d627b1931533660a42279c2f6ba

    • SSDEEP

      384:66iIwqiQqdhuWSCeWyDzDm0GftpBjzaQHRN7b1UltZPj:sTpJQViRLb1cj

    Score
    1/10
    behavioral31

    • Target

      XSSLite Stealer/Client/packages/NETStandard.Library.2.0.3/build/netstandard2.0/ref/System.ComponentModel.Composition.dll

    • Size

      20KB

    • MD5

      13a78370f26d280a133db532e2150780

    • SHA1

      6292b1c189028bd81dce7ce8ae6051df491fda0d

    • SHA256

      a3f4f6323bf0c44b33e2ba16c42f8c2f700e3e94750c0f48289c0388edf0253d

    • SHA512

      3ae9f487d5ecb67ae185cc84f0e126b15381cf6f0d879a8ee14cc7628ccba078bbe6f3c0511e5815d9401f1d0f07fbc1b47f3eae8058b37f82fbf4760f0bd2fc

    • SSDEEP

      384:1hF6DbIynW1lon1W9Fm0GftpBjJgaQHRN7V7SlUKTZv:1KDUlonaVibgL5xyv

    Score
    1/10
    behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

neshta
Score
10/10

behavioral1

execution
Score
3/10

behavioral2

execution
Score
3/10

behavioral3

execution
Score
3/10

behavioral4

execution
Score
3/10

behavioral5

Score
1/10

behavioral6

Score
1/10

behavioral7

Score
1/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

Score
1/10

behavioral14

Score
1/10

behavioral15

Score
1/10

behavioral16

Score
1/10

behavioral17

Score
1/10

behavioral18

Score
1/10

behavioral19

Score
1/10

behavioral20

Score
1/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

Score
1/10

behavioral26

Score
1/10

behavioral27

Score
1/10

behavioral28

Score
1/10

behavioral29

Score
1/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10