Overview

overview

10

Static

static

10

f1a9ef1378...7d.dll

windows10-2004-x64

1

Resubmissions

21/01/2025, 16:49 UTC

250121-vbpftatkax 10

20/11/2024, 13:25 UTC

241120-qn3rraxblf 3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f1a9ef13784ba05628c12decbbe44e7708793d1a707f9fbc2475c42e1ec2cb7d.exe

  • Size

    460KB

  • Sample

    250121-vbpftatkax

  • MD5

    ab47ad5d78dcb05d90ddb00a482d3a1e

  • SHA1

    fc8d7677842c365eab288314b60f31bdd47a7dd1

  • SHA256

    f1a9ef13784ba05628c12decbbe44e7708793d1a707f9fbc2475c42e1ec2cb7d

  • SHA512

    46a66fe3e779a8c06cc903cc9747230ad35e27a02637374c458ac5d3dd5c87687c5210dc1867339caaaa4be2361c362aa971c67061382b8c46d10ee4d88abad1

  • SSDEEP

    6144:Xc+kUlZndUcgzpK8XOFGEvOcMlZjMR8x40A79uriJJUqy9RznJ/cF:XzrJ2ckXkGEmcMl1sGmuzqynJ/cF

Score
10/10
zloaderpenta21.1

Malware Config

Extracted

Family

zloader

Botnet

Penta2

Campaign

1.1

C2

https://unitedcommunity.world/

Attributes
  • dns

    https://fordns/corproot/

    dns://ns1.brownswer.com

rsa_pubkey.plain
1
-----BEGIN PUBLIC KEY-----
2
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDCY+UFtvU5cltGpCE5EFl+Hfb3
3
S87stCJdHhS6tuyyaYjOt7xIAV3kFc6BlWxkmOmnTWd0qt7GT0o+tD2uTf7zPfR3
4
tkmp3vGXyNZXjR90lwSHKs22ksfOgmZpNdbZ+ZHVn4ozbpE/cGXzzo/k93z+P6Jk
5
chXZ8NwFZM8ARrcjeQIDAQAB
6
-----END PUBLIC KEY-----
7
rc4.hex
1
f0f1fff6f9fefaf3fbf9fff5f5fdf1ff

Targets

    • Target

      f1a9ef13784ba05628c12decbbe44e7708793d1a707f9fbc2475c42e1ec2cb7d.exe

    • Size

      460KB

    • MD5

      ab47ad5d78dcb05d90ddb00a482d3a1e

    • SHA1

      fc8d7677842c365eab288314b60f31bdd47a7dd1

    • SHA256

      f1a9ef13784ba05628c12decbbe44e7708793d1a707f9fbc2475c42e1ec2cb7d

    • SHA512

      46a66fe3e779a8c06cc903cc9747230ad35e27a02637374c458ac5d3dd5c87687c5210dc1867339caaaa4be2361c362aa971c67061382b8c46d10ee4d88abad1

    • SSDEEP

      6144:Xc+kUlZndUcgzpK8XOFGEvOcMlZjMR8x40A79uriJJUqy9RznJ/cF:XzrJ2ckXkGEmcMl1sGmuzqynJ/cF

    Score
    1/10
    behavioral1

MITRE ATT&CK Matrix

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.