Overview

overview

10

Static

static

8

APT29miniduke.bin.dll

windows7_x64

1

APT29miniduke.bin.dll

windows10_x64

3

CozyBearIm...in.exe

windows7_x64

1

CozyBearIm...in.exe

windows10_x64

1

ImplantCozy.bin.exe

windows7_x64

1

ImplantCozy.bin.exe

windows10_x64

1

MinidukeAPT29.bin.dll

windows7_x64

1

MinidukeAPT29.bin.dll

windows10_x64

3

Nov2018New...es.dll

windows7_x64

10

Nov2018New...es.dll

windows10_x64

10

ds7002.lnk

windows7_x64

10

ds7002.lnk

windows10_x64

10

Nov2018New...in.lnk

windows7_x64

3

Nov2018New...in.lnk

windows10_x64

3

ds7002.pdf

windows7_x64

1

ds7002.pdf

windows10_x64

1

SeaDaddyIm...in.exe

windows7_x64

1

SeaDaddyIm...in.exe

windows10_x64

1

SeaDaddyIm...in.exe

windows7_x64

1

SeaDaddyIm...in.exe

windows10_x64

1

TrojanCozy...in.exe

windows7_x64

TrojanCozy...in.exe

windows10_x64

8

atiagentCo...in.dll

windows7_x64

1

atiagentCo...in.dll

windows10_x64

1

Analysis

  • max time kernel
    32s
  • max time network
    34s
  • platform
    windows7_x64
  • resource
    win7v20201028
  • submitted
    06-03-2021 19:40

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SeaDaddyImplant (2).bin.exe

  • Size

    3.0MB

  • MD5

    004b55a66b3a86a1ce0a0b9b69b95976

  • SHA1

    e2b98c594961aae731b0ccee5f9607080ec57197

  • SHA256

    6c1bce76f4d2358656132b6b1d471571820688ccdbaca0d86d0ca082b9390536

  • SHA512

    30ad634e6491bed01cdb7ca448d03094c568a99f786e1d82702d304df041a76b8c062248840c9d7d5572a44a4d47d2a6024a35ff528ad56302273baf2627d308

Score
1/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\SeaDaddyImplant (2).bin.exe
    "C:\Users\Admin\AppData\Local\Temp\SeaDaddyImplant (2).bin.exe"
    1⤵
      PID:1108

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1108-2-0x00000000760D1000-0x00000000760D3000-memory.dmp
      Filesize

      8KB

      Download