latam_generic_downloader | abe6b696965b8e856ccb20587f8a2fc8327169557e0083cebeab58e14a9d0560 | Triage

Submit
Reports

Overview

overview

Static

static

ee408fa74f...39.msi

windows7_x64

8

ee408fa74f...39.msi

windows10_x64

Sharing

General

Target

ee408fa74fbfe568a05b0bbeff2e4339.msi
Size

4.0MB
Sample

211122-jr5l7afafl
MD5

ee408fa74fbfe568a05b0bbeff2e4339
SHA1

0e8e7da9769102123a1bd8ad0d22e48338d20495
SHA256

abe6b696965b8e856ccb20587f8a2fc8327169557e0083cebeab58e14a9d0560
SHA512

290d475b870da3d3e436d67b6aed192e1f68be592ee2b9eb70b2731596c8ce13be7c0bfd0192d63b57d4d103cca4f5a6d781ccf8dba17234f73c247de21162ac

Score

10^/10

latam_generic_downloader suricata

Static task

static1

latam_generic_downloader

Behavioral task

behavioral1

Sample

ee408fa74fbfe568a05b0bbeff2e4339.msi

Resource

win7-en-20211104

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

ee408fa74fbfe568a05b0bbeff2e4339.msi

Resource

win10-en-20211014

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

latam_generic_downloader

C2

https://webchatpyxx12gt.com/O/BGT325GGHDHBDHHBFHJFFF2121.zip

Targets

- Target
  
  ee408fa74fbfe568a05b0bbeff2e4339.msi
- Size
  
  4.0MB
- MD5
  
  ee408fa74fbfe568a05b0bbeff2e4339
- SHA1
  
  0e8e7da9769102123a1bd8ad0d22e48338d20495
- SHA256
  
  abe6b696965b8e856ccb20587f8a2fc8327169557e0083cebeab58e14a9d0560
- SHA512
  
  290d475b870da3d3e436d67b6aed192e1f68be592ee2b9eb70b2731596c8ce13be7c0bfd0192d63b57d4d103cca4f5a6d781ccf8dba17234f73c247de21162ac
Score

10^/10

suricata
- suricata: ET MALWARE Ousaban Banker Checkin M1
  suricata: ET MALWARE Ousaban Banker Checkin M1
  suricata
- Blocklisted process makes network request
- Executes dropped EXE
- Drops startup file
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

latam_generic_downloader

behavioral1

behavioral2

© 2018-2024

Terms | Privacy