Overview

overview

10

Static

static

10

cf00c34ace...2a.exe

windows7-x64

10

cf00c34ace...2a.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf00c34acedfc3cccbf909e6b68e826b1cfa9b9850781d9a421fac371588c42a.exe.zip

  • Size

    416KB

  • Sample

    231031-ratglaha6z

  • MD5

    965f4e69f2b957322b25c76693f17e6c

  • SHA1

    13aa9078418202d2ffaf1887aaf7c21c8cbe30bc

  • SHA256

    543eec567ecb98ca50fa8c86d9fe67cfdb318ecbc7630d1d0a3dc12ae665bb82

  • SHA512

    832c38114ad27cafdb95323b07eda8438d41a3ef0dc9a2011cbfd1084f1be188f3918518d7ec864726f38624a7146b5b1b4efe67951372f0fefbd2266b1e3b3f

  • SSDEEP

    12288:DVHQNqDx4Y/oApOhQ5f8kXzq3ttSKuzYOvL6ZxQ8n:tOSiY/PpOhQ5f8Oz6tt2LUJn

Score
10/10
ammyyadminflawedammyytrojan

Malware Config

Targets

    • Target

      cf00c34acedfc3cccbf909e6b68e826b1cfa9b9850781d9a421fac371588c42a.exe

    • Size

      772KB

    • MD5

      8c63956cfb2265c8e59b68dd5b2d06f8

    • SHA1

      7424d7489a1b112f3fbd1e8342517a02aa219fea

    • SHA256

      cf00c34acedfc3cccbf909e6b68e826b1cfa9b9850781d9a421fac371588c42a

    • SHA512

      66d48a9e2b3f3441879567b1fbbbd48782a8bb269b223db0f14e59afea9feebfb376baa6c52447681af677d9cd2866a8805885e0bce327d0a97d760d15754f5f

    • SSDEEP

      12288:3SX+EvrCA3FNIs34Zk1L1ZSNlm3Spsal6lbRtMuStGKcsCSqcl90VaHg+x:gFNN4Zk1LTclm3e1kbRtyGKcpHcl5A+x

    Score
    10/10
    flawedammyytrojan

    • FlawedAmmyy RAT

      Remote-access trojan based on leaked code for the Ammyy remote admin software.

      trojanflawedammyy
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks