Overview

overview

10

Static

static

AVISO DE P...1A.exe

windows7-x64

10

AVISO DE P...1A.exe

windows10-2004-x64

10

msvfw32.dll

windows7-x64

1

msvfw32.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    AVISO DE PAGO SEPTIEMBRE_01A.rar

  • Size

    2.1MB

  • Sample

    220905-zgdzgsehap

  • MD5

    95392eb8d31a28296cfa002b980b3558

  • SHA1

    09348a53dcba03e4b6faf8f1998247cdf90b9ee5

  • SHA256

    a533f5bbfd62e07a97f1930081e752624915468aee9d88d4f9caa7106b0ee187

  • SHA512

    2aabec95f1bc0bb7277e7b4accdd54e381645d522ab39b9a7e38b4076d435e40da23bba990318ee5471eaad4703ab00961694c3e148e1077da4d81cc7c8d2bd7

  • SSDEEP

    49152:xqBbG1Z6kIdwth2vyW9CqH7nAqH82xNlfmYh4zEf4BdUfuAJJcVRBG+G9f:kBEANwqH7nJ04Jf4BmxJJSGp

Score
10/10
bandookrattrojanupx

Malware Config

Targets

    • Target

      AVISO DE PAGO SEPTIEMBRE_01A.exe

    • Size

      3.1MB

    • MD5

      7426cab16d83565016af7e83bd592980

    • SHA1

      63f45648ebfa88d71d4f0fb3d95a0868ce412fc4

    • SHA256

      b7cac1b8fe41304f69b6c2b7c48c225bc090c514f607397b5cce44238e9c546d

    • SHA512

      12627d91effc207266d6d8e1cb1a879a4eeca9b1343b247c0ed2b9d02b8b892756f220a1b32deb2fa9202093830b5994c2cdc29dfbed9e2db1474f310a62e6bc

    • SSDEEP

      49152:Y2CYzwf4b5k1V68IqNUoCVidq1pYlRJdF:Y29wfp

    Score
    10/10
    bandookrattrojanupx

    • Bandook RAT

      Bandook is a remote access tool written in C++ and shipped with a loader written in Delphi.

      rattrojanbandook

    • Bandook payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      msvfw32.dll

    • Size

      148KB

    • MD5

      f3354260c4b1383c586da9affde33d6b

    • SHA1

      2b911b3c59cc975fa081b88d4de21d345841dfb5

    • SHA256

      7e09b985d0ce2e6cab125bfb88ea3f3f85e9de065bcf2c140c7ba6ca82ad5dc0

    • SHA512

      9adf858c6d5f1601600294fb4c982ef0aa95cd386a98e17fb674619b2d38d330bcf46a27005e51ed0a967ec64e60bc86c3c3c40edaf8770fe8e2efdab83eda0e

    • SSDEEP

      3072:myAoMfEgYZciuGjmtyOpDHn4RO9rK47Xx+9O3QIPf64gDyyJ:Sbf8u67074Rerv7Xx+9OAIcDy

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks