xloader | 3c49925f16564b984c0b0f76cff0d581bf770958f0dd5686aff2c6ce747eef2a

General

Target

JaffaCakes118_e1464932cefb04d04a81434cf72a6da7
Size

163KB
Sample

250110-lvt1zatkcl
MD5

e1464932cefb04d04a81434cf72a6da7
SHA1

66f921ca1ef7142d98d91fb61587f9314308a418
SHA256

3c49925f16564b984c0b0f76cff0d581bf770958f0dd5686aff2c6ce747eef2a
SHA512

cfba791cdaff1ba57d400b962fc74f232f48e9b58d24e91afa43c8c7a04008cf32753a0519e7eec7db9944bb0ddbe3a826fcfbeecf862ad7b57b96a092c289de
SSDEEP

3072:7Opq32GadHlFgM1izIWQ5d3Dt+xKrfpL9nX/01H3ue:7rSb6M1iDQ5dzt+xefp9nE

Score

10^/10

Malware Config

Extracted

Family

xloader

Version

2.5

Campaign

n58i

Decoy

charlottebishop.com

afafshawwabibi.com

salomesac.com

albaelectric.info

ashcm.com

cxlgroups.com

kbittesting.com

stogelair.com

dgredg.com

smokersoutletinc.com

gdmo112.com

innovationmotive.xyz

outbarter.info

abevegege.online

peterjhill.com

fubosportsbetting.com

probristow.com

despirad.com

halloweengeneral.com

milesofsmileskinder.com

Targets

- Target
  
  JaffaCakes118_e1464932cefb04d04a81434cf72a6da7
- Size
  
  163KB
- MD5
  
  e1464932cefb04d04a81434cf72a6da7
- SHA1
  
  66f921ca1ef7142d98d91fb61587f9314308a418
- SHA256
  
  3c49925f16564b984c0b0f76cff0d581bf770958f0dd5686aff2c6ce747eef2a
- SHA512
  
  cfba791cdaff1ba57d400b962fc74f232f48e9b58d24e91afa43c8c7a04008cf32753a0519e7eec7db9944bb0ddbe3a826fcfbeecf862ad7b57b96a092c289de
- SSDEEP
  
  3072:7Opq32GadHlFgM1izIWQ5d3Dt+xKrfpL9nX/01H3ue:7rSb6M1iDQ5dzt+xefp9nE
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2