Malware Analysis Report

2024-07-11 07:31

Sample ID 220601-3h44vafgcm
Target cb1392724a6262a0994e00fc192515232bf59c4edf3c000f9215bf738d348e02
SHA256 cb1392724a6262a0994e00fc192515232bf59c4edf3c000f9215bf738d348e02
Tags
diamondfox
score
10/10

Table of Contents

Analysis Overview

MITRE ATT&CK Matrix

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
10/10

SHA256

cb1392724a6262a0994e00fc192515232bf59c4edf3c000f9215bf738d348e02

Threat Level: Known bad

The file cb1392724a6262a0994e00fc192515232bf59c4edf3c000f9215bf738d348e02 was found to be: Known bad.

Malicious Activity Summary

diamondfox

DiamondFox stealer

Diamondfox family

Patched UPX-packed file

AutoIT Executable

MITRE ATT&CK Matrix

N/A

Analysis: static1

Detonation Overview

Reported

2022-06-01 23:31

Signatures

DiamondFox stealer

Description Indicator Process Target
N/A N/A N/A N/A

Diamondfox family

diamondfox

Patched UPX-packed file

Description Indicator Process Target
N/A N/A N/A N/A

AutoIT Executable

Description Indicator Process Target
N/A N/A N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2022-06-01 23:31

Reported

2022-06-01 23:34

Platform

ubuntu1804-amd64-en-20211208

Max time kernel

0s

Max time network

103s

Command Line

[./cb1392724a6262a0994e00fc192515232bf59c4edf3c000f9215bf738d348e02]

Signatures

N/A

Processes

./cb1392724a6262a0994e00fc192515232bf59c4edf3c000f9215bf738d348e02

[./cb1392724a6262a0994e00fc192515232bf59c4edf3c000f9215bf738d348e02]

Network

Files

N/A