numando | cdf4b776599edc5640c53c2ecdf0959b24d49245e6fae4d1ec57c03cf3660ae9 | Triage

Submit
Reports

Overview

overview

Static

static

cdf4b77659...e9.dll

windows7_x64

cdf4b77659...e9.dll

windows10-2004_x64

Sharing

General

Target

cdf4b776599edc5640c53c2ecdf0959b24d49245e6fae4d1ec57c03cf3660ae9
Size

3.5MB
Sample

220502-b6jdhahcf7
MD5

c0a26edbd8e0bb5ba4e32eb3fceb250b
SHA1

a6dfd89164d12ffb403c57a22c65fcbe43bd873d
SHA256

cdf4b776599edc5640c53c2ecdf0959b24d49245e6fae4d1ec57c03cf3660ae9
SHA512

de2cfeadf4b3eb2e5e2bffdf048bcdbfc67622f2befd1391407a00c07e38c0c80ce497060d70f6ce1b797012c795f515d880ceb984c82824c3c92ea7144d2695

Score

10^/10

numando backdoor trojan

Static task

static1

Behavioral task

behavioral1

Sample

cdf4b776599edc5640c53c2ecdf0959b24d49245e6fae4d1ec57c03cf3660ae9.dll

Resource

win7-20220414-en

numando backdoor trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

cdf4b776599edc5640c53c2ecdf0959b24d49245e6fae4d1ec57c03cf3660ae9.dll

Resource

win10v2004-20220414-en

numando backdoor trojan

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  cdf4b776599edc5640c53c2ecdf0959b24d49245e6fae4d1ec57c03cf3660ae9
- Size
  
  3.5MB
- MD5
  
  c0a26edbd8e0bb5ba4e32eb3fceb250b
- SHA1
  
  a6dfd89164d12ffb403c57a22c65fcbe43bd873d
- SHA256
  
  cdf4b776599edc5640c53c2ecdf0959b24d49245e6fae4d1ec57c03cf3660ae9
- SHA512
  
  de2cfeadf4b3eb2e5e2bffdf048bcdbfc67622f2befd1391407a00c07e38c0c80ce497060d70f6ce1b797012c795f515d880ceb984c82824c3c92ea7144d2695
Score

10^/10

numando backdoor trojan
- Detect Numando Payload
- Numando
  Numando is a banking trojan/backdoor targeting Latin America which uses Youtube and Pastebin for C2 communications.
  trojan backdoor numando
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

numandobackdoortrojan

behavioral2

numandobackdoortrojan

© 2018-2024

Terms | Privacy