General

  • Target

    53917ed9caf56cf52e75c3843a0bfdf6a2cd996a0dcccfb8519479f1114d5d89.zip

  • Size

    4.1MB

  • MD5

    3ace4f98a8e2ca5ace180869db765846

  • SHA1

    76cf3c93a4f62cd164964ca0ed87be803e835220

  • SHA256

    74aeb42fb3716c9a4111768aad66c88f4108140122c855a1664e4181a5133906

  • SHA512

    6d816f039896e3e63d4b7a4a14a6587b8d7cd0fa5d1fdc43539cb0c2c81173b267dca9d3c999f513b47004f66ea65836f004efbdac717dc32ca263910b68fce8

  • SSDEEP

    98304:u6HhGCtqyAqtkuWPuxHk8qmQ0YkqnP9jlR+GDVD:uVKkuWGVk8qmDYHFXVD

Score
10/10

Malware Config

Extracted

Family

dynam1c

C2

https://api.telegram.org/bot6842353583:AAEgR3kxlNRjwYDcC3dhMp3Rc4cvQgVYxzY

Signatures

  • Dynam1c family
  • Detect suspicious telegram bot 1 IoCs

    Detect suspicious telegram bot.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 53917ed9caf56cf52e75c3843a0bfdf6a2cd996a0dcccfb8519479f1114d5d89.zip
    .zip

    Password: infected

  • 53917ed9caf56cf52e75c3843a0bfdf6a2cd996a0dcccfb8519479f1114d5d89
    .exe windows:6 windows x64 arch:x64

    Password: infected

    c2d457ad8ac36fc9f18d45bffcd450c2


    Headers

    Imports

    Sections