General
-
Target
https://github.com/Dvdf45tyv5y/help/raw/main/name.rar
-
Sample
240917-qq9cbawajn
Score
10/10
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://github.com/Dvdf45tyv5y/help/raw/main/name.rar
Resource
win10v2004-20240802-en
windows10-2004-x64
18 signatures
150 seconds
Malware Config
Extracted
Family
phemedrone
C2
https://api.telegram.org/bot7370990677:AAFRG5SGghnaK_mDZqGyrOAkScygRIFkkzQ/sendDocument
Targets
-
-
Target
https://github.com/Dvdf45tyv5y/help/raw/main/name.rar
Score10/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of SetThreadContext
-