phemedrone | 147d6af97b1f11913972a85ccc5f50ff86100db0e2a2957a2efb09b0736a9a11 | Triage

Submit
Reports

Overview

overview

Static

static

3

7d955bb75c...c4.exe

windows11-21h2-x64

Sharing

General

Target

7d955bb75c0eb8d8c50d911cfb6320df0c7af260d16522c71b5a8e8f52d121c4.zip
Size

635KB
Sample

250202-syxdtszlgp
MD5

6cb74f7853fba2b62db8ecfc7bf68c89
SHA1

ce8f84d4887a356baa181c893b9e1445b0afddc8
SHA256

147d6af97b1f11913972a85ccc5f50ff86100db0e2a2957a2efb09b0736a9a11
SHA512

c0a8fffc2f90a73ab0d64ad037595e0e4f7d9311ca466d5a0e24266c7006b090d75e3ace3329e55b783a67db8569bbd22ce2fb561d1883367080d36218ae0f96
SSDEEP

12288:7gM2gXKhy3L/aDO21+JEgvvsFT4nSlyiduPGVsdjLVqn53zSl:kMTK+CDOCj4nBzPGVsdsnp8

Score

10^/10

phemedrone discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7d955bb75c0eb8d8c50d911cfb6320df0c7af260d16522c71b5a8e8f52d121c4.exe

Resource

win11-20241007-en

phemedrone discovery stealer

windows11-21h2-x64

14 signatures

900 seconds

Malware Config

Extracted

Family

phemedrone

C2

195.20.18.146:8080

Targets

- Target
  
  7d955bb75c0eb8d8c50d911cfb6320df0c7af260d16522c71b5a8e8f52d121c4.exe
- Size
  
  1.1MB
- MD5
  
  37c5e2de42bc44f855e4316f85b5ed8d
- SHA1
  
  a8743e31caac1fbb101646d43f9ce7d5479567ad
- SHA256
  
  7d955bb75c0eb8d8c50d911cfb6320df0c7af260d16522c71b5a8e8f52d121c4
- SHA512
  
  5a3a37ef1c204c8a55d324f6fe96a949f685aa28d11b64c949710369a9ed31d380422a6922eca8c71002922f6e1417996b33fa39d66cd6c9484f66408697a81f
- SSDEEP
  
  24576:Eec44mam9NMNfs5KpQnBOeC+aMQNo/80:Z4hmq05KpQnB++CWr
Score

10^/10

phemedrone discovery stealer
- Phemedrone
  An information and wallet stealer written in C#.
  stealer phemedrone
- Phemedrone family
  phemedrone
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

phemedronediscoverystealer

© 2018-2025

Terms | Privacy