General
-
Target
Bank Details.rar
-
Size
642KB
-
Sample
210420-y9el7j3jq6
-
MD5
149d464286ee8e4b964fc1bafddcdf67
-
SHA1
abf219862483121937a76dd0f6968234782a2a81
-
SHA256
795cbf921ad4645f3b16761091d40bba19bc65ea2edd1f35f1083c548ecdb41f
-
SHA512
3c78829907fc12b474af274d9d68182407a74196d03964238db112bb80270d46a6d8ec475d80ba6c71e100d9bf4ea81447b31ca3ebff91683f760e374857f092
Static task
static1
Behavioral task
behavioral1
Sample
Bank Details.exe
Resource
win7v20210410
Malware Config
Extracted
xloader
2.3
http://www.baseballisland.com/oop8/
beidafu.net
negociosejogos.com
operation-eskimo.wtf
construccionesap.com
pitpi.net
indasc.com
kunleizz.com
dichvusocial.net
xn--80azfm8d.net
radfw.com
rahmatdigitalpro.online
osswestpoint.com
suelorefrigerante.com
cantevencandles.com
markdicas.com
thasaas.com
stclairneighbourrep.com
wzbtlm.com
clinicointegralbcn.info
lactpeel-konyu.club
prasadmadv.info
berbens.com
eric-mathieu.com
baldizbalkonda.com
baransuaritma.com
whatareyoulookingfor.info
bkadvisor.solutions
subsoloart.com
vearteq.com
charliekidswear.com
oknamovies.com
holy-academy.com
oceaniacoconuts.com
digitalprintbook.com
sneeson.com
barochia.xyz
pascoexplorers.net
oilsuite.com
craveableweed.com
manongioalaha.com
americaradioshow.com
fleybo.com
sebicoin.net
zipreps.com
baythemoon.com
ivygcollection.com
bestcbdhempgrower.com
qqsgbtnny.icu
thedowscones.com
gutterklean.com
hempiscottonsdaddy.com
tomoward.com
moojeb.com
refrigeratorrepairinhialeah.com
castalandgroup.com
thegati.com
glenr0y.com
twochildhood.com
digitalmarketingmoves.com
poolandspaexpress.com
kuppers.info
alllivesport.com
flaviestyle.com
jordihako.com
Targets
-
-
Target
Bank Details.exe
-
Size
1.1MB
-
MD5
bfb651eda6ae35c7faf71897ea5957fe
-
SHA1
53b0a31eda2c480b1c193a318a69a00a619ff071
-
SHA256
67ad3d12a1b7bbca0e3f0d809156aaf250cde5ea7e626d32787670e6358a9b85
-
SHA512
4d5e0ce641ba73eed1132a19726e3843f042effab62c912823c35ffd071cfc4f26c52c8023187c431c83989d1d278fa618a621088d8327b8ed952cc9d2ddace8
-
Xloader Payload
-
Deletes itself
-
Suspicious use of SetThreadContext
-