General

  • Target

    f_000d12

  • Size

    422KB

  • MD5

    039b8c951acf9eca3ba1752779540aac

  • SHA1

    baa324545ed43fcdd1eb17a949089378b69069a1

  • SHA256

    0a3f9c54fca6da0147b6b29f0d2d67341ac46d6b5d6116c01a2cbe2d1474b0d1

  • SHA512

    3d741477a82b519c0c369d5ae61f23a9a26edb66ecbd44d03f7d230ef6b00b0692d3344e4dc47e6b91b512db756dcb682baec0bd611bb01aa59d1488baaab5a0

  • SSDEEP

    12288:x0SpccogLq6GvjDuIAiaHj/b0mdFpbYWn39:x0Sp9ogOxvjbXaHjj0mdHJt

Score
10/10

Malware Config

Signatures

  • AmmyyAdmin payload 1 IoCs
  • Ammyyadmin family

Files

  • f_000d12
    .zip

    Password: S@ndb0x!2023@@

  • Device/HarddiskVolume3/Users/WissamIH/AppData/Local/Microsoft/Edge/User Data/Default/Cache/Cache_Data/f_000d12
    .exe windows x86

    Password: S@ndb0x!2023@@

    3e985254f2e34ad96da799a2a5d33efe


    Code Sign

    Headers

    Imports

    Sections

  • manifest.json