Overview

overview

10

Static

static

3

XBMr.sct.dll

windows10-2004-x64

10

Resubmissions

02-11-2023 18:21

231102-wzsc2sdf7y 10

02-11-2023 09:58

231102-lzg7zacc84 3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    XBMr.sct.dll

  • Size

    1.3MB

  • Sample

    231102-wzsc2sdf7y

  • MD5

    30ab06a3bf1ec8ae7bd02ef4ce79719f

  • SHA1

    9a0567614d857e13b9792a5b02b14dc95cd82c70

  • SHA256

    1c125a10c33d862e6179b6827131e1aac587d23f1b7be0dbcb32571d70e34de4

  • SHA512

    34e2d744e24609a2d985064b60f8cf4e96a91b4a107120e6577cd28c82298403e2de85c5ca5c316c9239b568addb892ac713793dd1a3640334fde8edb5fdf32c

  • SSDEEP

    24576:XDOgwgfYbK9s3kW3CG3vQ3snpR7loatbEUZqHwhv642THJ1r63LSw7b8VzkPPjwm:XDOyfYbK9sZvw8V/qQeHf6JUawknjH

Score
10/10
pikabotbotnetcore

Malware Config

Targets

    • Target

      XBMr.sct.dll

    • Size

      1.3MB

    • MD5

      30ab06a3bf1ec8ae7bd02ef4ce79719f

    • SHA1

      9a0567614d857e13b9792a5b02b14dc95cd82c70

    • SHA256

      1c125a10c33d862e6179b6827131e1aac587d23f1b7be0dbcb32571d70e34de4

    • SHA512

      34e2d744e24609a2d985064b60f8cf4e96a91b4a107120e6577cd28c82298403e2de85c5ca5c316c9239b568addb892ac713793dd1a3640334fde8edb5fdf32c

    • SSDEEP

      24576:XDOgwgfYbK9s3kW3CG3vQ3snpR7loatbEUZqHwhv642THJ1r63LSw7b8VzkPPjwm:XDOyfYbK9sZvw8V/qQeHf6JUawknjH

    Score
    10/10
    pikabotbotnetcore

    • PikaBot

      PikaBot is a botnet that is distributed similarly to Qakbot and written in c++.

      botnetpikabot

    • pikabot_core

      Detects pikabot core payload

      core

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks