General

  • Target

    7aeab9459e2a833d56e474a23ab56bc66645a89ff8ef175050d8b0bed74d090e.exe.zip

  • Size

    415KB

  • Sample

    231031-rhh1tsbf36

  • MD5

    498291c9d16496c58b9e8efa9b01abfe

  • SHA1

    6a3cc88beb2f27af6000fb4981c21289166377f1

  • SHA256

    f0633cfbdf2d9c88d69ffc9768083331937058b1bb2e710cde0a8c8fcefcd0d9

  • SHA512

    926ef3a4f53ab672fccb71674796dc80c0f41e4c83d79f6d78f354fc8576ad4c9984341b26bdaddc28feb92646e59002afc65823da5c8d6e1af0a3b1c3fd964a

  • SSDEEP

    12288:ucDgBlrbVSNVTjKUcC0PbjFV9fPVdaeZAy:uckVcKtVbrdLAy

Malware Config

Targets

    • Target

      7aeab9459e2a833d56e474a23ab56bc66645a89ff8ef175050d8b0bed74d090e.exe

    • Size

      774KB

    • MD5

      79910ca3e3418acca4fa2f2e16bac1a3

    • SHA1

      e2619c3d2580aa37c579835fdd3c5efee3f22412

    • SHA256

      7aeab9459e2a833d56e474a23ab56bc66645a89ff8ef175050d8b0bed74d090e

    • SHA512

      0e5ae373f2c1f9c8ba03338c2b5c520c6c1b1fa6ad38bcfa52f926634e1f65fac1cbd50af96c6e4d873424c38a1dd4c985d5fdc5de12a5827c76852340bffb5a

    • SSDEEP

      12288:/Xe1Z2fJipMHEgSeA6M7kmchJGvRuORtcE9qTpy+Yg0HkV+QgM:ftkmHEgSewkmchJGsORtn9qT8+Yg03FM

    Score
    10/10
    • FlawedAmmyy RAT

      Remote-access trojan based on leaked code for the Ammyy remote admin software.

MITRE ATT&CK Matrix

Tasks