Resubmissions
07-02-2021 21:34
210207-f3zdwd2tm2 1008-12-2020 11:52
201208-xvslc1nzqa 1007-12-2020 21:20
201207-a3a47qhgrs 1006-12-2020 13:08
201206-sd218sn3hn 1005-12-2020 18:26
201205-8ejezclvb6 1005-12-2020 18:12
201205-7xxk8bganx 1005-12-2020 18:07
201205-q7nb9qfb4a 1002-12-2020 14:27
201202-hjkc54thx2 1001-12-2020 10:33
201201-zkg1ler6kj 1001-12-2020 07:50
201201-cs2bstnzl2 10Behavioral task
behavioral1
Sample
b81361e9fe744a57b38d7e4e461b75678196da1ad9658fba3d33f864c5bd7ae8.exe
Resource
win7v20201028
General
-
Target
b81361e9fe744a57b38d7e4e461b75678196da1ad9658fba3d33f864c5bd7ae8.exe
-
Size
138KB
-
MD5
5ffee5af2c9bd19f44fe28ba22f690ee
-
SHA1
2371a9950e23c7702edb6c8f5213cda52e38c571
-
SHA256
b81361e9fe744a57b38d7e4e461b75678196da1ad9658fba3d33f864c5bd7ae8
-
SHA512
9971e49ce0c76eaaa363e4905e62a584a04feef0ece29faabb1f64c2d30d9792e358ffbfca3c3105ca115583c7b6a9b0327f4b7e21b6e3e754965e75a286e436
Malware Config
Extracted
trickbot
100004
rob12
103.250.70.163:443
181.196.24.6:443
103.87.25.220:443
2.179.73.140:443
118.69.133.4:443
202.62.47.109:443
14.102.109.190:443
103.78.81.5:443
116.0.54.227:443
36.94.193.167:443
194.5.179.82:443
213.235.183.78:443
103.52.47.20:449
-
autorunName:pwgrab
Signatures
-
Trickbot family
Files
-
b81361e9fe744a57b38d7e4e461b75678196da1ad9658fba3d33f864c5bd7ae8.exe.exe windows x86