Overview

overview

10

Static

static

7

3ef2a73907...48.exe

windows7-x64

10

3ef2a73907...48.exe

windows10-2004-x64

10

Resubmissions

29-08-2023 03:06

230829-dl7ayacf91 10

01-07-2022 14:18

220701-rmjg6ahdd6 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3ef2a739073edef534d6bbd2c426cf8e2285544d03afe33ce64526f3e5926248

  • Size

    312KB

  • Sample

    230829-dl7ayacf91

  • MD5

    17a1f7e98731df9b74b98accb650d50e

  • SHA1

    64a96c0cfd3884f682b1b56f3e9e1b880849694f

  • SHA256

    3ef2a739073edef534d6bbd2c426cf8e2285544d03afe33ce64526f3e5926248

  • SHA512

    49ad8edbd470c2fd32a1317288634b6411da106510527117808b3c2eb78685c1ceb69d93eaa2047cabce5bb7da9901a00c10e071f7482d2ee5bb6af231380917

  • SSDEEP

    6144:n6Mld0mZO7xKwkN4hzWxXAjHO4aoi8yij67LHMtBhqjeicA:ntlZQxRkN4hyxwbx0ctjbX

Score
10/10
diamondfoxbotnetinfostealerstealerupx

Malware Config

Targets

    • Target

      3ef2a739073edef534d6bbd2c426cf8e2285544d03afe33ce64526f3e5926248

    • Size

      312KB

    • MD5

      17a1f7e98731df9b74b98accb650d50e

    • SHA1

      64a96c0cfd3884f682b1b56f3e9e1b880849694f

    • SHA256

      3ef2a739073edef534d6bbd2c426cf8e2285544d03afe33ce64526f3e5926248

    • SHA512

      49ad8edbd470c2fd32a1317288634b6411da106510527117808b3c2eb78685c1ceb69d93eaa2047cabce5bb7da9901a00c10e071f7482d2ee5bb6af231380917

    • SSDEEP

      6144:n6Mld0mZO7xKwkN4hzWxXAjHO4aoi8yij67LHMtBhqjeicA:ntlZQxRkN4hyxwbx0ctjbX

    Score
    10/10
    diamondfoxbotnetinfostealerstealerupx

    • DiamondFox

      DiamondFox is a multipurpose botnet with many capabilities.

      botnetstealerdiamondfox

    • DiamondFox payload

      Detects DiamondFox payload in file/memory.

      infostealer

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks