Overview

overview

10

Static

static

14e26fcb05...44.exe

windows7-x64

10

14e26fcb05...44.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    14e26fcb0564640ced6ab6e7902603f6f2d982671ce2c2381f4820d6bd587044

  • Size

    451KB

  • Sample

    230129-wgp5zaga99

  • MD5

    95717067649f46f99fd1a6fdf756d8dc

  • SHA1

    9e83a602c6ac952f23816b5cfca9b5038cc7026a

  • SHA256

    14e26fcb0564640ced6ab6e7902603f6f2d982671ce2c2381f4820d6bd587044

  • SHA512

    baca39a84299b154b7a065a2ecf4ca1cfe4fb219aaa2315b54fd514b3ea868f5246fe2d7966c2d9bf9ae92e9e523bb8831560b4880b632dfff445aa03e6d0bc6

  • SSDEEP

    12288:f7Z1YxE0qcmh204+2gYEOAF4uwmRilBJo:fLL0qlh9oAF4uw4Kk

Score
10/10
triumphloaderloadertrojan

Malware Config

Targets

    • Target

      14e26fcb0564640ced6ab6e7902603f6f2d982671ce2c2381f4820d6bd587044

    • Size

      451KB

    • MD5

      95717067649f46f99fd1a6fdf756d8dc

    • SHA1

      9e83a602c6ac952f23816b5cfca9b5038cc7026a

    • SHA256

      14e26fcb0564640ced6ab6e7902603f6f2d982671ce2c2381f4820d6bd587044

    • SHA512

      baca39a84299b154b7a065a2ecf4ca1cfe4fb219aaa2315b54fd514b3ea868f5246fe2d7966c2d9bf9ae92e9e523bb8831560b4880b632dfff445aa03e6d0bc6

    • SSDEEP

      12288:f7Z1YxE0qcmh204+2gYEOAF4uwmRilBJo:fLL0qlh9oAF4uw4Kk

    Score
    10/10
    triumphloaderloadertrojan

    • TriumphLoader

      TriumphLoader is a c++ loader based on the open source AbsentLoader.

      trojanloadertriumphloader

    • TriumphLoader payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks