legion | 073981492bea30da3f6af8ffebba5aa066a09e159eba1f932df1f1b1b6d083c6

Resubmissions

09-02-2024 12:00

17-05-2021 23:30

Reason

config extraction: missing cfgextr callback for rule "legion_loader"

Target

073981492bea30da3f6af8ffebba5aa066a09e159eba1f932df1f1b1b6d083c6
Size

971KB
MD5

1c4d1e992e1328d90b494c97c847e436
SHA1

808c43cf56b457d488d47a51652b55cbba236dbb
SHA256

073981492bea30da3f6af8ffebba5aa066a09e159eba1f932df1f1b1b6d083c6
SHA512

ff395c649e121df18f02049504e40f6446bf3a534483004952b874c85f256c8b7159f0182bc5a4a829b23d5b437f6adcdf3c6ef35c6e0f82e34dd13b889bec69

Score

10^/10

downloader legion

Legion downloader 1 IoCs

Detected Legion downloader HTTP request code and PowerShell execution.

resource	yara_rule
sample	legion_downloader

073981492bea30da3f6af8ffebba5aa066a09e159eba1f932df1f1b1b6d083c6
.exe windows x86