Overview

overview

10

Static

static

3

Plumulaceous.dll

windows7-x64

1

Plumulaceous.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Plumulaceous.dll

  • Size

    795KB

  • Sample

    231126-yjne9sca73

  • MD5

    c83fe58088ef5f05342367e71eb28873

  • SHA1

    8af8c027cb0f56b6775115383f4d5bdf010a6352

  • SHA256

    fa5710fea9ff93e8d446803066d2cf74088f67db96336c000fbff597982eb128

  • SHA512

    0089a1ed148c7ea705ef9bdcaa3231ebf8d78d6e5e32a487ad4dff5aebcae33470aa1c5074d6ed55d7be37ae80526d826a1ce1c93faa6f7181848f0a0d23292d

  • SSDEEP

    24576:/tR2jQOoVmT/QrwFbxE6Elpq5nOkcJofEXmi:1TMT/jb+Bl05nBcJocXmi

Score
10/10
pikabotbotnet

Malware Config

Targets

    • Target

      Plumulaceous.dll

    • Size

      795KB

    • MD5

      c83fe58088ef5f05342367e71eb28873

    • SHA1

      8af8c027cb0f56b6775115383f4d5bdf010a6352

    • SHA256

      fa5710fea9ff93e8d446803066d2cf74088f67db96336c000fbff597982eb128

    • SHA512

      0089a1ed148c7ea705ef9bdcaa3231ebf8d78d6e5e32a487ad4dff5aebcae33470aa1c5074d6ed55d7be37ae80526d826a1ce1c93faa6f7181848f0a0d23292d

    • SSDEEP

      24576:/tR2jQOoVmT/QrwFbxE6Elpq5nOkcJofEXmi:1TMT/jb+Bl05nBcJocXmi

    Score
    10/10
    pikabotbotnet

    • Detects PikaBot botnet

    • PikaBot

      PikaBot is a botnet that is distributed similarly to Qakbot and written in c++.

      botnetpikabot

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks