diamondfox | f771b277221c7b1f569e44b18537b50f406f236412f57e04a9a5cc54f072e519 | Triage

Submit
Reports

Overview

overview

Static

static

f771b27722...19.exe

windows7_x64

f771b27722...19.exe

windows10_x64

Sharing

General

Target

f771b277221c7b1f569e44b18537b50f406f236412f57e04a9a5cc54f072e519.exe
Size

573KB
Sample

200716-ncytwybgnj
MD5

72bb8e802c14c18dc8822db3b15d6e38
SHA1

ca47292b04a271bc7dbb09cf8bb966eaa478783d
SHA256

f771b277221c7b1f569e44b18537b50f406f236412f57e04a9a5cc54f072e519
SHA512

f623bdad2e2a259bc4ddc2ba35b7f81c3380e39bcdfdc86506ce22ca717cd223904c30bd48a400319c3e6197bf885fefc1503967b9815e7d734de2d96220332c

Score

10^/10

diamondfox botnet stealer

Static task

static1

Behavioral task

behavioral1

Sample

f771b277221c7b1f569e44b18537b50f406f236412f57e04a9a5cc54f072e519.exe

Resource

win7v200430

diamondfox botnet stealer

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

f771b277221c7b1f569e44b18537b50f406f236412f57e04a9a5cc54f072e519.exe

Resource

win10

diamondfox botnet stealer

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  f771b277221c7b1f569e44b18537b50f406f236412f57e04a9a5cc54f072e519.exe
- Size
  
  573KB
- MD5
  
  72bb8e802c14c18dc8822db3b15d6e38
- SHA1
  
  ca47292b04a271bc7dbb09cf8bb966eaa478783d
- SHA256
  
  f771b277221c7b1f569e44b18537b50f406f236412f57e04a9a5cc54f072e519
- SHA512
  
  f623bdad2e2a259bc4ddc2ba35b7f81c3380e39bcdfdc86506ce22ca717cd223904c30bd48a400319c3e6197bf885fefc1503967b9815e7d734de2d96220332c
Score

10^/10

diamondfox botnet stealer
- DiamondFox
  DiamondFox is a multipurpose botnet with many capabilities.
  botnet stealer diamondfox
- DiamondFox payload
  Detects DiamondFox payload in file/memory.
- ServiceHost packer
  Detects ServiceHost packer used for .NET malware
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

diamondfoxbotnetstealer

behavioral2

diamondfoxbotnetstealer

© 2018-2024

Terms | Privacy