Malware Analysis Report

2024-10-19 08:26

Sample ID 201024-cpggmcc2q6
Target DB VIMEWORLD.txt
SHA256 b79f1eca7af5422c327e48dea7abf27af357f48694e0940b01db680c5e5f58b0
Tags
snakebot snakebot
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

b79f1eca7af5422c327e48dea7abf27af357f48694e0940b01db680c5e5f58b0

Threat Level: Known bad

The file DB VIMEWORLD.txt was found to be: Known bad.

Malicious Activity Summary

snakebot snakebot

Snakebot family

Contains SnakeBOT related strings

JavaScript code in executable

MITRE ATT&CK

N/A

Analysis: static1

Detonation Overview

Reported

2020-10-24 08:29

Signatures

Snakebot family

snakebot

Contains SnakeBOT related strings

snakebot
Description Indicator Process Target
N/A N/A N/A N/A

JavaScript code in executable

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2020-10-24 08:28

Reported

2020-10-24 16:48

Platform

win10

Max time kernel

1563s

Max time network

1607s

Command Line

C:\Windows\system32\NOTEPAD.EXE "C:\Users\Admin\AppData\Local\Temp\DB VIMEWORLD.txt"

Signatures

N/A

Processes

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\system32\NOTEPAD.EXE "C:\Users\Admin\AppData\Local\Temp\DB VIMEWORLD.txt"

Network

N/A

Files

N/A