Overview

overview

10

Static

static

tune.exe

windows7-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tune.bin

  • Size

    216KB

  • Sample

    221229-2zqr4shf6x

  • MD5

    c003231a632fa9d74620c52d22ffb140

  • SHA1

    ec2c2f3f38a3bf00b67ba53413c3be94f50a7408

  • SHA256

    2fc677921d477d8855da80277a86eaef43a8f69e86a502627f392529c2599aa5

  • SHA512

    92b67457de91ab653d71a0c28dfbc1d13d775c0ea95b00c9e7ea8913208ee2e8b9ae23e62a20c31f91969c7f91566ed52d2cc965fc75f2bc7e61efdf98187ceb

  • SSDEEP

    3072:aqx8ojLSZA1kNLm+9sON9+wvukPEQrZrN75xYFZNjF7Zyy:ljLS+1kc+79+wvdPRrZrJYFX

Score
10/10
diamondfoxbotnetinfostealerstealer

Malware Config

Targets

    • Target

      tune.bin

    • Size

      216KB

    • MD5

      c003231a632fa9d74620c52d22ffb140

    • SHA1

      ec2c2f3f38a3bf00b67ba53413c3be94f50a7408

    • SHA256

      2fc677921d477d8855da80277a86eaef43a8f69e86a502627f392529c2599aa5

    • SHA512

      92b67457de91ab653d71a0c28dfbc1d13d775c0ea95b00c9e7ea8913208ee2e8b9ae23e62a20c31f91969c7f91566ed52d2cc965fc75f2bc7e61efdf98187ceb

    • SSDEEP

      3072:aqx8ojLSZA1kNLm+9sON9+wvukPEQrZrN75xYFZNjF7Zyy:ljLS+1kc+79+wvdPRrZrJYFX

    Score
    10/10
    diamondfoxbotnetinfostealerstealer

    • DiamondFox

      DiamondFox is a multipurpose botnet with many capabilities.

      botnetstealerdiamondfox

    • DiamondFox payload

      Detects DiamondFox payload in file/memory.

      infostealer

    • Executes dropped EXE

    • Deletes itself

    • Loads dropped DLL

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks