Overview

overview

10

Static

static

3

2496580638...3d.zip

windows10-ltsc 2021-x64

10

Resubmissions

10/01/2025, 23:13

250110-27qgbaslft 7

10/01/2025, 15:56

250110-tdjgxa1pan 10

09/01/2025, 18:36

250109-w8wf3axlc1 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    249658063881bcc13f2b21919906d68272dff1348251a2a1cb77abaf0eaf0c3d.zip

  • Size

    1.2MB

  • Sample

    250109-w8wf3axlc1

  • MD5

    8225ba2c90fada8b9b26cdbbad2f471b

  • SHA1

    0c11c37bb58a2682302b0d9cfd9c2e9d753c55d4

  • SHA256

    8e8d12f2cc2ebbbb38b83946259b3e67f381be00d4a560f27076d6baa021f339

  • SHA512

    f11580ecbde059e642ef098852f26611ae28e18ee5583e840182aa41fe40154965d9a71cae59c3a78cb10d1ed362ca53d196156bf4551ede00d6a2f07ce1a09f

  • SSDEEP

    24576:z+nXS0Fvo9GR1WLAdNdNtAvVBA0RsX+uLMgPc1lOO:z+nXS0FvoQLWLA9004xuLtg8O

Score
10/10
meduzadiscoverystealer

Malware Config

Targets

    • Target

      249658063881bcc13f2b21919906d68272dff1348251a2a1cb77abaf0eaf0c3d.zip

    • Size

      1.2MB

    • MD5

      8225ba2c90fada8b9b26cdbbad2f471b

    • SHA1

      0c11c37bb58a2682302b0d9cfd9c2e9d753c55d4

    • SHA256

      8e8d12f2cc2ebbbb38b83946259b3e67f381be00d4a560f27076d6baa021f339

    • SHA512

      f11580ecbde059e642ef098852f26611ae28e18ee5583e840182aa41fe40154965d9a71cae59c3a78cb10d1ed362ca53d196156bf4551ede00d6a2f07ce1a09f

    • SSDEEP

      24576:z+nXS0Fvo9GR1WLAdNdNtAvVBA0RsX+uLMgPc1lOO:z+nXS0FvoQLWLA9004xuLtg8O

    Score
    10/10
    meduzadiscoverystealer

    • Meduza

      Meduza is a crypto wallet and info stealer written in C++.

      stealermeduza

    • Meduza Stealer payload

    • Meduza family

      meduza

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks