diamondfox | 9385d7e149bcda79e5a4291ad422c160be8297d029d04ee04c50240fe53aa900 | Triage

Submit
Reports

Overview

overview

Static

static

Energetic ...nt.exe

windows10-1703-x64

4

Sharing

General

Target

Energetic Bear Implant
Size

1.9MB
Sample

240325-xn5pnsfh54
MD5

f901c645188f9c80afa8f49174f065ce
SHA1

272bc9298b394760d68e14dcf479233800a098a9
SHA256

9385d7e149bcda79e5a4291ad422c160be8297d029d04ee04c50240fe53aa900
SHA512

8de72f93ab1a507a08a283da4e8948756364d45fa70e8332da424b27a9cb8d6c3ad93cb5062343a6cc8cf0009d7c7d3fef8e209f99fedbe02b7d2d5c010c291c
SSDEEP

24576:7MWHiFDV07ECXo4tu619SbX7ZwwjeJJV+CBqAKngHu8LNZZ/LJCPlyPlVzOCr:WJ6qbroCn8u8jhL0PMtVSCr

Score

10^/10

diamondfox nanocore pyinstaller

Static task

static1

pyinstaller diamondfox nanocore

7 signatures

Behavioral task

behavioral1

Sample

Energetic Bear Implant.exe

Resource

win10-20240221-en

windows10-1703-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  Energetic Bear Implant
- Size
  
  1.9MB
- MD5
  
  f901c645188f9c80afa8f49174f065ce
- SHA1
  
  272bc9298b394760d68e14dcf479233800a098a9
- SHA256
  
  9385d7e149bcda79e5a4291ad422c160be8297d029d04ee04c50240fe53aa900
- SHA512
  
  8de72f93ab1a507a08a283da4e8948756364d45fa70e8332da424b27a9cb8d6c3ad93cb5062343a6cc8cf0009d7c7d3fef8e209f99fedbe02b7d2d5c010c291c
- SSDEEP
  
  24576:7MWHiFDV07ECXo4tu619SbX7ZwwjeJJV+CBqAKngHu8LNZZ/LJCPlyPlVzOCr:WJ6qbroCn8u8jhL0PMtVSCr
Score

4^/10
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Peripheral Device Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

pyinstallerdiamondfoxnanocore

behavioral1

© 2018-2024

Terms | Privacy