General
-
Target
dbad49f023c6926a885182c8ba68b09f00e49195b1ff442622ac18c09e958107
-
Size
500KB
-
Sample
220724-z9agrsghg5
-
MD5
d5be9cd95c5fb99df9074bf11fb198f1
-
SHA1
df2a7901e07ea80564cfebdb4c93b8e8db49bd67
-
SHA256
dbad49f023c6926a885182c8ba68b09f00e49195b1ff442622ac18c09e958107
-
SHA512
cad905c7728a751423f17682616a7118a575842f7f50ace82275ed8c894e139305406d8babfb891a1571b0e12259fbb469a94dd4a8e05af543d980fba95f6e23
Static task
static1
Behavioral task
behavioral1
Sample
dbad49f023c6926a885182c8ba68b09f00e49195b1ff442622ac18c09e958107.exe
Resource
win7-20220715-en
Malware Config
Targets
-
-
Target
dbad49f023c6926a885182c8ba68b09f00e49195b1ff442622ac18c09e958107
-
Size
500KB
-
MD5
d5be9cd95c5fb99df9074bf11fb198f1
-
SHA1
df2a7901e07ea80564cfebdb4c93b8e8db49bd67
-
SHA256
dbad49f023c6926a885182c8ba68b09f00e49195b1ff442622ac18c09e958107
-
SHA512
cad905c7728a751423f17682616a7118a575842f7f50ace82275ed8c894e139305406d8babfb891a1571b0e12259fbb469a94dd4a8e05af543d980fba95f6e23
-
Trickbot x86 loader
Detected Trickbot's x86 loader that unpacks the x86 payload.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-