Overview

overview

10

Static

static

3

AlmiqueArt...kb.dll

windows7-x64

3

AlmiqueArt...kb.dll

windows10-2004-x64

3

launcher.bat

windows7-x64

1

launcher.bat

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20112023_2135_AlmiqueArtilleryman_pkb.zip

  • Size

    967KB

  • Sample

    231120-qvrcasgc37

  • MD5

    251bf02deeeeec07dc8554dae810bbe0

  • SHA1

    c8dc9a7866600f1df7c1c9dba85d656709ca924d

  • SHA256

    8706238594e89688a27279cc2148a0da409da6108aea7f193a7355a318c063a2

  • SHA512

    a1249440fdd036e26d72867a76abcac3d12a1ab9d96759cd1f01efc7d00b485c35a92fdb3becb41faae560f5d92fc9edca1dfe0e3de1bcf20a35de882f988c55

  • SSDEEP

    24576:zU/8/RRSnYRTO2R4iXksPXD+6AjZ+J2CN5HGHoMi:zUE/in6O84i0WujZa5Mi

Score
10/10
pikabotbotnet

Malware Config

Targets

    • Target

      AlmiqueArtilleryman_pkb.dll

    • Size

      1.4MB

    • MD5

      d0256fa105e5efb3be92980c37bec56a

    • SHA1

      94a483168ded4bd365e5d895eeaf6617eceb15aa

    • SHA256

      3afd0ec9ff87802fecb70c64bf0c0b86081bd909b9b649f902931964d585632a

    • SHA512

      7f2f7b4a1be93cddd9f769b0cfbae6384e802cf4d3826674f778419b58e9c115f99632d11e23e9541c17149da40b77d410834a841744e74047d2a30aa2f74feb

    • SSDEEP

      24576:RSK7rGFAMXNQi2h3ErhPirNiX60lpYA/58c8thHBALNu4hOx3jMG:veFPdqNiK9AkBiXEjMG

    Score
    3/10
    behavioral1behavioral2

    • Target

      launcher.bat

    • Size

      78B

    • MD5

      b798e505cab8b4485e6564c2ebe7ca9a

    • SHA1

      dcae7a12511993699e426df80c6a685f0b516d49

    • SHA256

      6c09f67e986a895de62234143490469fcc8bc393c4cc5e8d58346ea5e6f77395

    • SHA512

      9743066cbd1ce7d2795dfbe97ad268258fadd7846bbd9e3ccd25db613d11653fabfd7c1501becad4a5bae332629e8275cedbdd292584ac856770b57d581100bb

    Score
    10/10
    pikabotbotnet

    • Detects PikaBot botnet

    • PikaBot

      PikaBot is a botnet that is distributed similarly to Qakbot and written in c++.

      botnetpikabot

    • Suspicious use of SetThreadContext

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks