General

  • Target

    0f466eebf214bea517664f3fb34099deb9f12f7910c0d962d7d6957c8ca09362

  • Size

    314KB

  • Sample

    221130-qlvncsde28

  • MD5

    2da1d4cc6c7a815a9b644475060c8c85

  • SHA1

    305864b19b3bacea25243bac415264b401e34d6b

  • SHA256

    0f466eebf214bea517664f3fb34099deb9f12f7910c0d962d7d6957c8ca09362

  • SHA512

    f9f47ac6a4abe7ab2cb91d0f4e6f20b4dc7c28b83df588010191adb30031865e41cc0fff8f98c4226085b0bd9c2e1375bfa5f1e4c58868b3b9380aeaba198ed2

  • SSDEEP

    6144:Pu1TYYRYx0SxYYq1eIk/M9W9MlBkwaUVAv4zDKGvfYYwXe:QYYXSqC/Mw9MjxAvQXYZXe

Score
10/10

Malware Config

Targets

    • Target

      0f466eebf214bea517664f3fb34099deb9f12f7910c0d962d7d6957c8ca09362

    • Size

      314KB

    • MD5

      2da1d4cc6c7a815a9b644475060c8c85

    • SHA1

      305864b19b3bacea25243bac415264b401e34d6b

    • SHA256

      0f466eebf214bea517664f3fb34099deb9f12f7910c0d962d7d6957c8ca09362

    • SHA512

      f9f47ac6a4abe7ab2cb91d0f4e6f20b4dc7c28b83df588010191adb30031865e41cc0fff8f98c4226085b0bd9c2e1375bfa5f1e4c58868b3b9380aeaba198ed2

    • SSDEEP

      6144:Pu1TYYRYx0SxYYq1eIk/M9W9MlBkwaUVAv4zDKGvfYYwXe:QYYXSqC/Mw9MjxAvQXYZXe

    Score
    10/10
    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Executes dropped EXE

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Matrix

Tasks