General
-
Target
ba55319ea8ec41d1925baaa6c931a48ab06c63b2f3000488b9fc00d5924d0dbd
-
Size
728KB
-
Sample
220724-sxbqqshbbl
-
MD5
39d3393936c13d9093a909dd421ca40a
-
SHA1
398f6f4d2eb47db45ba1d93dc7677236e4faa740
-
SHA256
ba55319ea8ec41d1925baaa6c931a48ab06c63b2f3000488b9fc00d5924d0dbd
-
SHA512
d329f8102ff87c9c12137fb707737aeca5e8b0489ecdd44bfed14c66c6cb7330128c1f8fd39d9d506711f90d32cc9d54a0ed44ca0d1b88ccfc5f162b5b3aec19
Static task
static1
Behavioral task
behavioral1
Sample
ba55319ea8ec41d1925baaa6c931a48ab06c63b2f3000488b9fc00d5924d0dbd.exe
Resource
win7-20220718-en
Malware Config
Targets
-
-
Target
ba55319ea8ec41d1925baaa6c931a48ab06c63b2f3000488b9fc00d5924d0dbd
-
Size
728KB
-
MD5
39d3393936c13d9093a909dd421ca40a
-
SHA1
398f6f4d2eb47db45ba1d93dc7677236e4faa740
-
SHA256
ba55319ea8ec41d1925baaa6c931a48ab06c63b2f3000488b9fc00d5924d0dbd
-
SHA512
d329f8102ff87c9c12137fb707737aeca5e8b0489ecdd44bfed14c66c6cb7330128c1f8fd39d9d506711f90d32cc9d54a0ed44ca0d1b88ccfc5f162b5b3aec19
-
Trickbot x86 loader
Detected Trickbot's x86 loader that unpacks the x86 payload.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-