General
-
Target
ef4738378cb83741acae0aea278d1560d117e4416b672b2ad5e2f50c4a878dde
-
Size
596KB
-
Sample
220128-vtnx1ahadq
-
MD5
9cd22445bb2702c92f7ab926c12fa672
-
SHA1
ff0a4d7cecc6bc9c06f8d4bb1da9991e45cd1966
-
SHA256
ef4738378cb83741acae0aea278d1560d117e4416b672b2ad5e2f50c4a878dde
-
SHA512
1bb7ec41ca6648228f5de828e27b419f0fffcf84e1dd2016370834bb4747be80169cccbe8437421d1dac7c5554372de6c00b2c055c0fd072f708451fd57ffa93
Static task
static1
Behavioral task
behavioral1
Sample
ef4738378cb83741acae0aea278d1560d117e4416b672b2ad5e2f50c4a878dde.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
ef4738378cb83741acae0aea278d1560d117e4416b672b2ad5e2f50c4a878dde.exe
Resource
win10-en-20211208
Malware Config
Extracted
trickbot
1000479
trgt889
192.3.104.46:443
23.94.233.210:443
172.82.152.126:443
192.3.247.11:443
202.29.215.114:449
-
autorunControl:GetSystemInfoName:systeminfoName:pwgrab
Targets
-
-
Target
ef4738378cb83741acae0aea278d1560d117e4416b672b2ad5e2f50c4a878dde
-
Size
596KB
-
MD5
9cd22445bb2702c92f7ab926c12fa672
-
SHA1
ff0a4d7cecc6bc9c06f8d4bb1da9991e45cd1966
-
SHA256
ef4738378cb83741acae0aea278d1560d117e4416b672b2ad5e2f50c4a878dde
-
SHA512
1bb7ec41ca6648228f5de828e27b419f0fffcf84e1dd2016370834bb4747be80169cccbe8437421d1dac7c5554372de6c00b2c055c0fd072f708451fd57ffa93
-
Trickbot x86 loader
Detected Trickbot's x86 loader that unpacks the x86 payload.
-
Executes dropped EXE
-