diamondfox

General

Target

7a1833f7b91269b9f0eb48f9bba3db9cc444f749d82255322e1f8e221612895f.zip
Size

44KB
Sample

221025-wehccadcg7
MD5

a8f71d7f8f5a25e7124a8f4d93f7b832
SHA1

ba7411b2f70dc2c7fdc52b2a32a8948d634c5a1d
SHA256

a5ce92e7e63bf447b0d2591484d012b8491221c6a27bf2ae87d9a5678f7d09e9
SHA512

426b176bd53b618cdd65ee2eeed8d07b39690d22ae167af824849bbd860c7923cc0930baa16b6f697b680bd8bb93667a621a9462195f23372324f7b38abc3191
SSDEEP

768:2tXC5HyW4/aFxuhIggUQ68k2hJLKqO3hEnZMHSlv91D4D1Z:2RC5T4/aFx8gfkwJLJOR2MHKfDaf

Score

10^/10

Malware Config

Targets

- Target
  
  7a1833f7b91269b9f0eb48f9bba3db9cc444f749d82255322e1f8e221612895f
- Size
  
  18KB
- MD5
  
  8f77d92060389f5733905710714556ce
- SHA1
  
  f817bbd59241f5dd732259784c2fabff78d1dfde
- SHA256
  
  7a1833f7b91269b9f0eb48f9bba3db9cc444f749d82255322e1f8e221612895f
- SHA512
  
  313e5b16ac7d556a74d19b2610f5e811694c1a660a460604afe5272f416fb1f7f2d04cea173dc9f2ce392e42101225fa0850f03ceaf46616d52347c96097468a
- SSDEEP
  
  384:NJE1O9JBp+U2CYf00mrtWivKSmSggQmUWgVhkXHQ1:NFI0/XvdJUVhgH
Score

10^/10

diamondfox botnet evasion persistence stealer trojan
- DiamondFox
  DiamondFox is a multipurpose botnet with many capabilities.
  botnet stealer diamondfox
- UAC bypass
  evasion trojan
- Windows security bypass
  evasion trojan
- Executes dropped EXE
- Deletes itself
- Drops startup file
- Loads dropped DLL
- Windows security modification
  evasion trojan
- Adds Run key to start application
  persistence
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2
- Target
  
  7a1833f7b91269b9f0eb48f9bba3db9cc444f749d82255322e1f8e221612895f_dump_0x00400000
- Size
  
  68KB
- MD5
  
  07edaf9e96f804bfe4da684025b6be37
- SHA1
  
  17b8cab275d90a3391e6fa3e1a9a602f89b80713
- SHA256
  
  88c74c96d8de753237e2927a6e1b81e41710121a41398902510d018daf4e400c
- SHA512
  
  5a3511bbddfa9bbb6ddf7ca334cbb66de967571e2705d6ddf6bc7934ac16e8c2db0d98397bfb1e67a77d47f074c9cb2ae47f2a9241a260efa3d3ec5ec3d00a18
- SSDEEP
  
  768:xFQbBuCExED5DDwP1yByU0yylKdwnYoKCVjL8G4GZfJUVhgH:gbsDuD5Ds410FKKQtG4IxUQH
Score

3^/10
behavioral3 behavioral4