General

  • Target

    e533fd9161edf7377412713d5aa48bc1600da488f5c5089f38620073a4f0f9c7.bin

  • Size

    1.1MB

  • Sample

    210406-e5q9vy2ryn

  • MD5

    cd8e68e0de191baf9c62dbc7cc42fee3

  • SHA1

    0ba1be62710a94df3d037cb0c74ef881abac18be

  • SHA256

    e533fd9161edf7377412713d5aa48bc1600da488f5c5089f38620073a4f0f9c7

  • SHA512

    5d8d2ac0be7427674d5e6741999188ad5a5e9659630a9fd272803efdade47adf8aaf93d505f3ec9716ea9739a2ac7dc0d56d7770915006671b1329124542ffae

Malware Config

Targets

    • Target

      e533fd9161edf7377412713d5aa48bc1600da488f5c5089f38620073a4f0f9c7.bin

    • Size

      1.1MB

    • MD5

      cd8e68e0de191baf9c62dbc7cc42fee3

    • SHA1

      0ba1be62710a94df3d037cb0c74ef881abac18be

    • SHA256

      e533fd9161edf7377412713d5aa48bc1600da488f5c5089f38620073a4f0f9c7

    • SHA512

      5d8d2ac0be7427674d5e6741999188ad5a5e9659630a9fd272803efdade47adf8aaf93d505f3ec9716ea9739a2ac7dc0d56d7770915006671b1329124542ffae

    • DiamondFox

      DiamondFox is a multipurpose botnet with many capabilities.

    • DiamondFox payload

      Detects DiamondFox payload in file/memory.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix ATT&CK v6

Discovery

System Information Discovery

1
T1082

Tasks