Overview

overview

10

Static

static

iff.bin.dll

windows7_x64

10

iff.bin.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    iff.bin.dll

  • Size

    621KB

  • Sample

    211216-tbmfsacdc9

  • MD5

    9f09b1dd6235c28b091a7dbc9bcd9482

  • SHA1

    b7ac19b82e2f946e7cc047421875bbade3e880fd

  • SHA256

    571cba0431acea4739c5248de1b1d33e76e995b3c7454f4d88d2785ade6fdf74

  • SHA512

    19035aef95de7160c7584dd0f309ecfa05c428c9b4c4fd194f587e2cb0845717678121753a7f55c903907086b06f5d3b92693557448334d73457ab321c4d6750

Score
10/10
hancitor1612_mcxplkjgdownloader

Malware Config

Extracted

Family

hancitor

Botnet

1612_mcxplkjg

C2

http://hiltustra.com/9/forum.php

http://corelince.ru/9/forum.php

http://mernwel.ru/9/forum.php

Targets

    • Target

      iff.bin.dll

    • Size

      621KB

    • MD5

      9f09b1dd6235c28b091a7dbc9bcd9482

    • SHA1

      b7ac19b82e2f946e7cc047421875bbade3e880fd

    • SHA256

      571cba0431acea4739c5248de1b1d33e76e995b3c7454f4d88d2785ade6fdf74

    • SHA512

      19035aef95de7160c7584dd0f309ecfa05c428c9b4c4fd194f587e2cb0845717678121753a7f55c903907086b06f5d3b92693557448334d73457ab321c4d6750

    Score
    10/10
    hancitor1612_mcxplkjgdownloader

    • Hancitor

      Hancitor is downloader used to deliver other malware families.

      downloaderhancitor
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks