sgm.bin

General
Target

sgm.bin

Size

40KB

Sample

210312-ly4qyrtcc2

Score
10 /10
MD5

8a9a8739404210e7e454dc2466872f23

SHA1

a3dbb6cb1eed87147f734c933e087bd66954ca18

SHA256

8229a6d0339c001fd0ce51db1b10748d37c838baee130afea2488f2ad0e05ac4

SHA512

2479c99ffc4002c909a1e6acf66ed2b6dc32efeea0b6182eb2ca8bb5cbe65bd85e507a0bab5f1e38232918cf59f29b592dc1f83b4d9684106ebf5707e057726e

Malware Config
Targets
Target

sgm.bin

MD5

8a9a8739404210e7e454dc2466872f23

Filesize

40KB

Score
10 /10
SHA1

a3dbb6cb1eed87147f734c933e087bd66954ca18

SHA256

8229a6d0339c001fd0ce51db1b10748d37c838baee130afea2488f2ad0e05ac4

SHA512

2479c99ffc4002c909a1e6acf66ed2b6dc32efeea0b6182eb2ca8bb5cbe65bd85e507a0bab5f1e38232918cf59f29b592dc1f83b4d9684106ebf5707e057726e

Tags

Signatures

  • Nloader

    Description

    Simple loader that includes the keyword 'cambo' in the URL used to download other families.

    Tags

  • Nloader Payload

  • Blocklisted process makes network request

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10

                          behavioral2

                          10/10