radiance.png.pellet

General
Target

radiance.png.pellet

Size

532KB

Sample

201124-6fm1ely71s

Score
10 /10
MD5

e8a28a5d13c44e81779b7f499224e5bf

SHA1

52cd0f52e9fab839fac42dd69a1c52aa9b9885f8

SHA256

696d31629493814286b941bdb40b81ebfa04f6f8e569868f49dafc68afcb4e85

SHA512

fd6db083f3b248bdaf51d62317c3d93d1bec9e777dcb815c5122e2fea4b8ab20b1cba2d1f13dd7f4e56b648efdff57cbb434cd4289adfe3aed7074e9fe3ef835

Malware Config

Extracted

Family trickbot
Version 1000298
Botnet tot352
C2

185.222.202.113:443

24.247.181.155:449

174.105.235.178:449

185.111.74.246:443

181.113.17.230:449

174.105.233.82:449

66.60.121.58:449

207.140.14.141:443

42.115.91.177:443

198.12.108.171:443

71.94.101.25:443

206.130.141.255:449

198.46.161.244:443

74.140.160.33:449

65.31.241.133:449

140.190.54.187:449

24.247.181.226:449

24.119.69.70:449

188.68.209.153:443

103.110.91.118:449

68.4.173.10:443

72.189.124.41:449

105.27.171.234:449

182.253.20.66:449

172.222.97.179:449

46.149.182.112:449

85.143.172.208:443

199.227.126.250:449

24.113.161.184:449

197.232.50.85:443

94.232.20.113:443

190.145.74.84:449

47.49.168.50:443

64.233.159.129:449

24.227.222.4:449
Attributes
autorun
Control: GetSystemInfo
Name: systeminfo
Name: injectDll
Name: pwgrab
ecc_pubkey.base64
Targets
Target

radiance.png.pellet

MD5

e8a28a5d13c44e81779b7f499224e5bf

Filesize

532KB

Score
10 /10
SHA1

52cd0f52e9fab839fac42dd69a1c52aa9b9885f8

SHA256

696d31629493814286b941bdb40b81ebfa04f6f8e569868f49dafc68afcb4e85

SHA512

fd6db083f3b248bdaf51d62317c3d93d1bec9e777dcb815c5122e2fea4b8ab20b1cba2d1f13dd7f4e56b648efdff57cbb434cd4289adfe3aed7074e9fe3ef835

Tags

Related Tasks

behavioral1 behavioral2
MITRE ATT&CK Matrix
Collection
Command and Control
    Credential Access
    Defense Evasion
    Discovery
      Execution
        Exfiltration
          Impact
          Initial Access
            Lateral Movement
              Persistence
              Privilege Escalation