Overview

overview

10

Static

static

10

8de76539d6...e4.exe

windows7-x64

10

8de76539d6...e4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8de76539d6d64228ae987107ab718b82bb93c163e42235402f96a48f26c49ce4

  • Size

    111KB

  • MD5

    44fa4c011697e2dc2d149219a9949740

  • SHA1

    7925497efd9ef5ac7e859d50e5861e690f4d7c4f

  • SHA256

    8de76539d6d64228ae987107ab718b82bb93c163e42235402f96a48f26c49ce4

  • SHA512

    165f88076246bb671c8556f2cf5e74570d0c4728ac65305cd936e7480c0739fab9e77f7a152f5a639ef6c18af50c982fce4dd132c72f78f0d1e6b6052367296f

  • SSDEEP

    1536:l6JUfYrWajy6Ps/NLgxgkRb5rZn65lYC1IBKOkBs1OnsUgSOpWEfMF:OUTajyUCtKgq5c5l11IBKOSsQ9

Score
10/10
phemedrone

Malware Config

Extracted

Family

phemedrone

C2

https://api.telegram.org/bot6861530662:AAFueJRxaIZGz_oVT2-CVuuL9N0MRsh-5_Y/sendDocument

Signatures

  • Phemedrone family
    phemedrone
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8de76539d6d64228ae987107ab718b82bb93c163e42235402f96a48f26c49ce4
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections