phoenixstealer | 22f9b8d8c35d88fc9c57cc4dc7f438fad69094dcb6cf15f58813c9e1928a43e7 | Triage

Submit
Reports

Overview

overview

Static

static

000005.exe

windows10-1703-x64

Sharing

General

Target

000005.ldb
Size

1.4MB
Sample

221126-ztplraha9v
MD5

f69b832184bb5f7830e65bfeeda9906d
SHA1

c5c8d20594de19fa7ddbc1210c894cc7aa0c63c9
SHA256

22f9b8d8c35d88fc9c57cc4dc7f438fad69094dcb6cf15f58813c9e1928a43e7
SHA512

e15ee68cd6213cb8c4f1d3d22d63236536452ca344de1b7fe07d7aeaa3012faae7cb0bb09be10c254e7209dccdb775cd5156295183567bcdf492339c2834a822
SSDEEP

24576:O4cbvV5X/VCSEEqxZE6KWH432T+1GBr+DeKPjlDIOtqHp+guHU4ESve:O4i7/VCS03H828DxPjlcO0+BHU4ESve

Score

10^/10

phoenixstealer stealer

Static task

static1

Behavioral task

behavioral1

Sample

000005.exe

Resource

win10-20220901-en

phoenixstealer stealer

windows10-1703-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  000005.ldb
- Size
  
  1.4MB
- MD5
  
  f69b832184bb5f7830e65bfeeda9906d
- SHA1
  
  c5c8d20594de19fa7ddbc1210c894cc7aa0c63c9
- SHA256
  
  22f9b8d8c35d88fc9c57cc4dc7f438fad69094dcb6cf15f58813c9e1928a43e7
- SHA512
  
  e15ee68cd6213cb8c4f1d3d22d63236536452ca344de1b7fe07d7aeaa3012faae7cb0bb09be10c254e7209dccdb775cd5156295183567bcdf492339c2834a822
- SSDEEP
  
  24576:O4cbvV5X/VCSEEqxZE6KWH432T+1GBr+DeKPjlDIOtqHp+guHU4ESve:O4i7/VCS03H828DxPjlcO0+BHU4ESve
Score

10^/10

phoenixstealer stealer
- PhoenixStealer
  PhoenixStealer is an information stealer written in the C++, it sends the stolen information to cybercriminals.
  stealer phoenixstealer
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

phoenixstealerstealer

© 2018-2024

Terms | Privacy