Overview

overview

10

Static

static

3

AlmiqueArt...b2.dll

windows7-x64

3

AlmiqueArt...b2.dll

windows10-2004-x64

3

launcher.bat

windows7-x64

1

launcher.bat

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20112023_2228_AlmiqueArtilleryman_pkb2.zip

  • Size

    967KB

  • Sample

    231120-rthjfahd4z

  • MD5

    c805e674be24b92ff8680f9a5b810761

  • SHA1

    84e7944630aeabcba7ef25fcd6a124e58bfd188c

  • SHA256

    2392e38bed349ec4b17a05fd93c7a5ca7eae373f8d0e3395a8c021f0d8eb5fe0

  • SHA512

    60564f6fd9b5ea1568fd18ff2d4c151269c9242dd8f7d3c6aaef779a0e66d4947439308f9acb705d83d8c461965b333c3d670e97f6eb8c37ebfcbe238f9ea52b

  • SSDEEP

    24576:VU/8/RRSnYRTO2R4iXksPXD+6AjZ+J2CN5HGHoMf:VUE/in6O84i0WujZa5Mf

Score
10/10
pikabotbotnet

Malware Config

Targets

    • Target

      AlmiqueArtilleryman_pkb2.dll

    • Size

      1.4MB

    • MD5

      d0256fa105e5efb3be92980c37bec56a

    • SHA1

      94a483168ded4bd365e5d895eeaf6617eceb15aa

    • SHA256

      3afd0ec9ff87802fecb70c64bf0c0b86081bd909b9b649f902931964d585632a

    • SHA512

      7f2f7b4a1be93cddd9f769b0cfbae6384e802cf4d3826674f778419b58e9c115f99632d11e23e9541c17149da40b77d410834a841744e74047d2a30aa2f74feb

    • SSDEEP

      24576:RSK7rGFAMXNQi2h3ErhPirNiX60lpYA/58c8thHBALNu4hOx3jMG:veFPdqNiK9AkBiXEjMG

    Score
    3/10
    behavioral1behavioral2

    • Target

      launcher.bat

    • Size

      86B

    • MD5

      ff6177f24a11eaaa28c0a98fab30a4f5

    • SHA1

      ba676bbe65a5bbce6ae0d853dd1436fce3d50a6f

    • SHA256

      ab163a91b6577a3f14dfb859a20c06314673c87e5d6e1c11f4793eb741d05071

    • SHA512

      d54b744cd38278ce3172e36db6dd15ed5e01588cb612bc43898ee53d1b24ee79706f30052b289c34c17d34508b1f0486164003bb78ea25ef8670dceb8b8da636

    Score
    10/10
    pikabotbotnet

    • Detects PikaBot botnet

    • PikaBot

      PikaBot is a botnet that is distributed similarly to Qakbot and written in c++.

      botnetpikabot

    • Suspicious use of SetThreadContext

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks