Overview

overview

10

Static

static

10

Setup Audi....0.exe

windows7-x64

7

Setup Audi....0.exe

windows10-2004-x64

10

Resubmissions

28-11-2023 22:01

231128-1xdt4ach93 10

28-11-2023 21:22

231128-z763yscg9v 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Setup Audiolens v1.2.0.exe

  • Size

    393.0MB

  • Sample

    231128-1xdt4ach93

  • MD5

    352aab786d3b494caab56cccef691058

  • SHA1

    f091676fb82583eb779f9c9d11d3ab97aa64b509

  • SHA256

    f7695730f1e5eaeaace310617f7c4174f63af6651fcce1de6572e19340df93d9

  • SHA512

    55ac7b48dee59fb6d7b91060f7eee72bef3a5d246297fe04b172aa49dcefd0a7b18ede77361bbcc8899428b796cd87577f611517becc99bcdab72a1f5dc7ebc8

  • SSDEEP

    12582912:5k0n3GZbJ9CkdaR/+znK/g8EVk6qSHMHvvw1zRcKMeeHkVshmWubL:KuYbJ97aMTK/gNVTqCMnyuP7HkV3tL

Score
10/10
diamondfoxbotnetdiscoveryinfostealerstealer

Malware Config

Targets

    • Target

      Setup Audiolens v1.2.0.exe

    • Size

      393.0MB

    • MD5

      352aab786d3b494caab56cccef691058

    • SHA1

      f091676fb82583eb779f9c9d11d3ab97aa64b509

    • SHA256

      f7695730f1e5eaeaace310617f7c4174f63af6651fcce1de6572e19340df93d9

    • SHA512

      55ac7b48dee59fb6d7b91060f7eee72bef3a5d246297fe04b172aa49dcefd0a7b18ede77361bbcc8899428b796cd87577f611517becc99bcdab72a1f5dc7ebc8

    • SSDEEP

      12582912:5k0n3GZbJ9CkdaR/+znK/g8EVk6qSHMHvvw1zRcKMeeHkVshmWubL:KuYbJ97aMTK/gNVTqCMnyuP7HkV3tL

    Score
    10/10
    discoverydiamondfoxbotnetinfostealerstealer

    • DiamondFox

      DiamondFox is a multipurpose botnet with many capabilities.

      botnetstealerdiamondfox

    • DiamondFox payload

      Detects DiamondFox payload in file/memory.

      infostealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks