General
-
Target
Recibo de Pago.exe
-
Size
1.4MB
-
Sample
221007-a6hxasbbf4
-
MD5
a896fbd8cffa0ec7ce702382c1998c10
-
SHA1
b31af0dac451c83954a092e8e6482d65a6f4f8be
-
SHA256
5175d32fcf938c4c14823d54b85a3217797bbf5733d5720f191e1911f47a2b83
-
SHA512
08408fc9f398ea066867dd15a97fdd110c7815c3dc36395550555501b261ccaf8aa7ce7739f52a9c25446b0533f87c9c1be56bf816e8b9e06e061c6d9414273e
-
SSDEEP
24576:ALGYO6yrG+Yi3eGdfszdIcNOmPdWjRtdIimNvBLVfGZ0ij01lQ7XthmX:crMDOULOTFBUtsP
Static task
static1
Behavioral task
behavioral1
Sample
Recibo de Pago.exe
Resource
win10-20220812-en
Malware Config
Extracted
bandook
deapproved.ru
Targets
-
-
Target
Recibo de Pago.exe
-
Size
1.4MB
-
MD5
a896fbd8cffa0ec7ce702382c1998c10
-
SHA1
b31af0dac451c83954a092e8e6482d65a6f4f8be
-
SHA256
5175d32fcf938c4c14823d54b85a3217797bbf5733d5720f191e1911f47a2b83
-
SHA512
08408fc9f398ea066867dd15a97fdd110c7815c3dc36395550555501b261ccaf8aa7ce7739f52a9c25446b0533f87c9c1be56bf816e8b9e06e061c6d9414273e
-
SSDEEP
24576:ALGYO6yrG+Yi3eGdfszdIcNOmPdWjRtdIimNvBLVfGZ0ij01lQ7XthmX:crMDOULOTFBUtsP
Score10/10-
Bandook payload
-
Adds Run key to start application
-