051053512d2ea0296c02313b2c37a25fdaecf88e8ead1b8bd2b27bef6b9dea45 | Triage

Sharing

General

Target

2025-03-21_2001f6e9b123be1252bb2245fbef7d27_amadey_hijackloader_krakenkeylogger_luca-stealer_poet-rat_rhadamanthys
Size

152.0MB
Sample

250321-ltpd4azpv9
MD5

2001f6e9b123be1252bb2245fbef7d27
SHA1

f8d315a614d988acda9593859dffe0f0aae98863
SHA256

051053512d2ea0296c02313b2c37a25fdaecf88e8ead1b8bd2b27bef6b9dea45
SHA512

3522861051ccac2e8b4bdebe099f8dc7e912d8356032f5a1f32b2f482ac41100e4ac1efa6c833ea3421a64c449d628f4a00054057c903782c80c0aa9bda792d9
SSDEEP

1572864:K2KvnNZb6N4HLmbrLQCJGSsutlfvWDXrxEJl0L/zb:K9vf+AmQC8Szdqr6CLf

Score

9^/10

agilenet cryptone discovery packer

Malware Config

Targets

- Target
  
  2025-03-21_2001f6e9b123be1252bb2245fbef7d27_amadey_hijackloader_krakenkeylogger_luca-stealer_poet-rat_rhadamanthys
- Size
  
  152.0MB
- MD5
  
  2001f6e9b123be1252bb2245fbef7d27
- SHA1
  
  f8d315a614d988acda9593859dffe0f0aae98863
- SHA256
  
  051053512d2ea0296c02313b2c37a25fdaecf88e8ead1b8bd2b27bef6b9dea45
- SHA512
  
  3522861051ccac2e8b4bdebe099f8dc7e912d8356032f5a1f32b2f482ac41100e4ac1efa6c833ea3421a64c449d628f4a00054057c903782c80c0aa9bda792d9
- SSDEEP
  
  1572864:K2KvnNZb6N4HLmbrLQCJGSsutlfvWDXrxEJl0L/zb:K9vf+AmQC8Szdqr6CLf
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

agilenetcryptonepacker

behavioral1

behavioral2