ammyyadmin | 76c9b7ac8063195b53cfb6e70c4c4f5c9fc30ba94afb7be2a208e40044dde51a | Triage

Submit
Reports

Overview

overview

Static

static

63eca9e1e7...27.exe

windows7-x64

63eca9e1e7...27.exe

windows10-2004-x64

Sharing

General

Target

63eca9e1e77387ebc1c27a4e3d344627
Size

760KB
Sample

240117-3q7vpshdd9
MD5

63eca9e1e77387ebc1c27a4e3d344627
SHA1

2a30bc7b48ea9e44660b5dba39f4ac46569bb82b
SHA256

76c9b7ac8063195b53cfb6e70c4c4f5c9fc30ba94afb7be2a208e40044dde51a
SHA512

ca198d8f147839e53235e284466c11ff3688e7fe37d6187d6c5bebf4e8ba2e00866eebb8c172f6b32a9bddb3f4b7d08825c88a42e7a820be84009a1101f435cd
SSDEEP

12288:Hgby1pKmZmjrWinaxABtyZPyoOOORtfWV5gk3VP0nkVgrg1N:4y1pVmjrWivBtyZPy2ORt+V5ggVP0t0T

Score

10^/10

ammyyadmin flawedammyy trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

63eca9e1e77387ebc1c27a4e3d344627.exe

Resource

win7-20231215-en

flawedammyy trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

63eca9e1e77387ebc1c27a4e3d344627.exe

Resource

win10v2004-20231215-en

flawedammyy trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  63eca9e1e77387ebc1c27a4e3d344627
- Size
  
  760KB
- MD5
  
  63eca9e1e77387ebc1c27a4e3d344627
- SHA1
  
  2a30bc7b48ea9e44660b5dba39f4ac46569bb82b
- SHA256
  
  76c9b7ac8063195b53cfb6e70c4c4f5c9fc30ba94afb7be2a208e40044dde51a
- SHA512
  
  ca198d8f147839e53235e284466c11ff3688e7fe37d6187d6c5bebf4e8ba2e00866eebb8c172f6b32a9bddb3f4b7d08825c88a42e7a820be84009a1101f435cd
- SSDEEP
  
  12288:Hgby1pKmZmjrWinaxABtyZPyoOOORtfWV5gk3VP0nkVgrg1N:4y1pVmjrWivBtyZPy2ORt+V5ggVP0t0T
Score

10^/10

flawedammyy trojan
- FlawedAmmyy RAT
  Remote-access trojan based on leaked code for the Ammyy remote admin software.
  trojan flawedammyy
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

flawedammyytrojan

behavioral2

flawedammyytrojan

© 2018-2024

Terms | Privacy