ammyyadmin | badb2ce8b876d8b90da34d371a84f74bf4beec4ce074182901dc007b63ee91db | Triage

Submit
Reports

Overview

overview

Static

static

MDE_File_S...40.zip

windows10-2004-x64

Sharing

General

Target

MDE_File_Sample_2e5265f35f75a50c89e592e127bc80e1e45aa840.zip
Size

380KB
Sample

240307-lfsjlagc29
MD5

996e0af813a92a438defebcb18e8a593
SHA1

45fc98787f077cc8ac8191e411995355b9e55375
SHA256

badb2ce8b876d8b90da34d371a84f74bf4beec4ce074182901dc007b63ee91db
SHA512

a56100178ed47af8bb790854ec182d569a23e0eb52f16f958677def91a8c5a2da4d69ca31f522aa7f7ec38c8cd1c37f1e74d8456bc29c6b01bd7229acef8e2c2
SSDEEP

6144:XKxEKAKTSiq645ecqcqCQP/J5NhyI9QPqlc7j+rOvXC59kKBwmcGm6OEGnSSFPAl:XK+W3q645eWVQPbX9QPqlc7j+WI9XBwE

Score

10^/10

ammyyadmin flawedammyy trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

MDE_File_Sample_2e5265f35f75a50c89e592e127bc80e1e45aa840.zip

Resource

win10v2004-20240226-en

flawedammyy trojan

windows10-2004-x64

10 signatures

600 seconds

Malware Config

Targets

- Target
  
  MDE_File_Sample_2e5265f35f75a50c89e592e127bc80e1e45aa840.zip
- Size
  
  380KB
- MD5
  
  996e0af813a92a438defebcb18e8a593
- SHA1
  
  45fc98787f077cc8ac8191e411995355b9e55375
- SHA256
  
  badb2ce8b876d8b90da34d371a84f74bf4beec4ce074182901dc007b63ee91db
- SHA512
  
  a56100178ed47af8bb790854ec182d569a23e0eb52f16f958677def91a8c5a2da4d69ca31f522aa7f7ec38c8cd1c37f1e74d8456bc29c6b01bd7229acef8e2c2
- SSDEEP
  
  6144:XKxEKAKTSiq645ecqcqCQP/J5NhyI9QPqlc7j+rOvXC59kKBwmcGm6OEGnSSFPAl:XK+W3q645eWVQPbX9QPqlc7j+WI9XBwE
Score

10^/10

flawedammyy trojan
- FlawedAmmyy RAT
  Remote-access trojan based on leaked code for the Ammyy remote admin software.
  trojan flawedammyy
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

flawedammyytrojan

© 2018-2024

Terms | Privacy