Overview

overview

10

Static

static

10

093e6f5269...6b.exe

windows7-x64

10

093e6f5269...6b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    093e6f5269af9c0bc8ab1c8209e096946bf8738489fa4cdef91f9c812e5db96b.zip

  • Size

    10KB

  • Sample

    230208-n2mataaa8t

  • MD5

    6b9858c9e00f4e7dd4b33cd79901c213

  • SHA1

    b3fb91ac97cfdb8a286026113d67de86b95c89e3

  • SHA256

    f092f8fc7c43aa626dda15580c760dffe41e17e03f5fe7fc50696baf36e0ffa0

  • SHA512

    9e4a447987a6aa3234e294fa69de031a8bf25f9e0ab1a9830ac0fe63637382764faf286e08cddd6778fb468ae3e6db89de997dc5915ef29148fe111bc6e8766d

  • SSDEEP

    192:wjAvNdC5WmBesfkAJOavZYDDyCqvc5ZT1b0nWdOvefeXfSa3WTBbCumgJpyPzYWr:YAvW5WYVbJOavCDm5vFbvW0Sa38Cumgm

Score
10/10
colibribotloader

Malware Config

Extracted

Family

colibri

Version

1.3.0

Botnet

bot

C2

http://176.113.115.240/gate.php

rc4.plain

Targets

    • Target

      093e6f5269af9c0bc8ab1c8209e096946bf8738489fa4cdef91f9c812e5db96b

    • Size

      18KB

    • MD5

      a488f87ae6df46c70b00feef75571230

    • SHA1

      595647989366986eea2046756d8aa273beda8f4e

    • SHA256

      093e6f5269af9c0bc8ab1c8209e096946bf8738489fa4cdef91f9c812e5db96b

    • SHA512

      ebcf65ac90406a6208c5ff56dda96eb1db5e3162658b1c7ac151fc3948c87e2930a872b6a2cf861309734a10662602eadb58e30109b366b377e4a2d97ef0db99

    • SSDEEP

      384:YYZ6xLj3OQPScLGC7n60Pc+SXlekhBVvM8SIg:rZO3eLK57hE+ylekh7v

    Score
    10/10
    colibribotloader

    • Colibri Loader

      A loader sold as MaaS first seen in August 2021.

      loadercolibri
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks