phemedrone | b4260a647d6db5b7c26bccbaba6455bcff3d7abc6d5740f1b35bc9cc6fd70bc7 | Triage

Submit
Reports

Overview

overview

Static

static

1

.html

windows7-x64

.html

windows10-2004-x64

1

Sharing

General

Target

.
Size

2KB
Sample

240617-a9gtea1bjm
MD5

15128c654f26eeb6b61baeae5b3d6f59
SHA1

c7a18064faa7a668fe31ea8625d72a531783fdf6
SHA256

b4260a647d6db5b7c26bccbaba6455bcff3d7abc6d5740f1b35bc9cc6fd70bc7
SHA512

5d64eaaefa7508e9909b52e6dd30fe20fd456356be596ed416f4b5b6b901f2c7a2dcab76d5de5638604c0c4519d9802dc6813c7c4f972d5f9b683ee527db4ee0

Score

10^/10

phemedrone stealer

Static task

static1

Behavioral task

behavioral1

Sample

.html

Resource

win7-20240221-en

phemedrone stealer

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

.html

Resource

win10v2004-20240508-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Extracted

Family

phemedrone

C2

https://api.telegram.org/bot7250665686:AAHW0YznZP8w-6An0q8-OF3zVVfXyjQuxLM/sendDocument

Targets

- Target
  
  .
- Size
  
  2KB
- MD5
  
  15128c654f26eeb6b61baeae5b3d6f59
- SHA1
  
  c7a18064faa7a668fe31ea8625d72a531783fdf6
- SHA256
  
  b4260a647d6db5b7c26bccbaba6455bcff3d7abc6d5740f1b35bc9cc6fd70bc7
- SHA512
  
  5d64eaaefa7508e9909b52e6dd30fe20fd456356be596ed416f4b5b6b901f2c7a2dcab76d5de5638604c0c4519d9802dc6813c7c4f972d5f9b683ee527db4ee0
Score

10^/10

phemedrone stealer
- Phemedrone
  An information and wallet stealer written in C#.
  stealer phemedrone
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

phemedronestealer

behavioral2

© 2018-2024

Terms | Privacy