diamondfox | 2fc677921d477d8855da80277a86eaef43a8f69e86a502627f392529c2599aa5 | Triage

Submit
Reports

Overview

overview

Static

static

tune.exe

windows7-x64

Sharing

General

Target

tune.bin
Size

216KB
Sample

221229-2zqr4shf6x
MD5

c003231a632fa9d74620c52d22ffb140
SHA1

ec2c2f3f38a3bf00b67ba53413c3be94f50a7408
SHA256

2fc677921d477d8855da80277a86eaef43a8f69e86a502627f392529c2599aa5
SHA512

92b67457de91ab653d71a0c28dfbc1d13d775c0ea95b00c9e7ea8913208ee2e8b9ae23e62a20c31f91969c7f91566ed52d2cc965fc75f2bc7e61efdf98187ceb
SSDEEP

3072:aqx8ojLSZA1kNLm+9sON9+wvukPEQrZrN75xYFZNjF7Zyy:ljLS+1kc+79+wvdPRrZrJYFX

Score

10^/10

diamondfox botnet infostealer stealer

Static task

static1

Behavioral task

behavioral1

Sample

tune.exe

Resource

win7-20220812-en

diamondfox botnet infostealer stealer

windows7-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  tune.bin
- Size
  
  216KB
- MD5
  
  c003231a632fa9d74620c52d22ffb140
- SHA1
  
  ec2c2f3f38a3bf00b67ba53413c3be94f50a7408
- SHA256
  
  2fc677921d477d8855da80277a86eaef43a8f69e86a502627f392529c2599aa5
- SHA512
  
  92b67457de91ab653d71a0c28dfbc1d13d775c0ea95b00c9e7ea8913208ee2e8b9ae23e62a20c31f91969c7f91566ed52d2cc965fc75f2bc7e61efdf98187ceb
- SSDEEP
  
  3072:aqx8ojLSZA1kNLm+9sON9+wvukPEQrZrN75xYFZNjF7Zyy:ljLS+1kc+79+wvdPRrZrJYFX
Score

10^/10

diamondfox botnet infostealer stealer
- DiamondFox
  DiamondFox is a multipurpose botnet with many capabilities.
  botnet stealer diamondfox
- DiamondFox payload
  Detects DiamondFox payload in file/memory.
  infostealer
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Remote System Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

diamondfoxbotnetinfostealerstealer

© 2018-2024

Terms | Privacy