truebot | bf3c7f0ba324c96c9a9bff6cf21650a4b78edbc0076c68a9a125ebcba0e523c9 | Triage

Submit
Reports

Overview

overview

Static

static

1

ovcfrnzu.dll

windows7-x64

ovcfrnzu.dll

windows10-2004-x64

Resubmissions

21-02-2023 14:12

230221-rhvpmagh7v 10

10-10-2022 04:28

221010-e37hpsafa4 8

Sharing

General

Target

ovcfrnzu.dll
Size

687KB
Sample

230221-rhvpmagh7v
MD5

37e6904d84153d1435407f4669135134
SHA1

e4dd1f8fc4e44c8fd0e25242d994c4b59eed6939
SHA256

bf3c7f0ba324c96c9a9bff6cf21650a4b78edbc0076c68a9a125ebcba0e523c9
SHA512

4208f016541c9868354733342f0e2813d3d0fe47de7a4f40766946172039ab1addcc6601c3dedf363cbe4f785c07cbf67b67830a3f88b3a6f17309010a8cf379
SSDEEP

12288:WJpOXg6QYZEEDBK51pF/0RP+xeQKg30xFAE4sLF8tW5XWQyYa7VROtv7:WSXgWYpFj+g39sLOtUyd7W1

Score

10^/10

truebot downloader

Static task

static1

Behavioral task

behavioral1

Sample

ovcfrnzu.dll

Resource

win7-20230220-en

truebot downloader

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

ovcfrnzu.dll

Resource

win10v2004-20230220-en

truebot downloader

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

truebot

C2

nefosferta.com/gate.php

Targets

- Target
  
  ovcfrnzu.dll
- Size
  
  687KB
- MD5
  
  37e6904d84153d1435407f4669135134
- SHA1
  
  e4dd1f8fc4e44c8fd0e25242d994c4b59eed6939
- SHA256
  
  bf3c7f0ba324c96c9a9bff6cf21650a4b78edbc0076c68a9a125ebcba0e523c9
- SHA512
  
  4208f016541c9868354733342f0e2813d3d0fe47de7a4f40766946172039ab1addcc6601c3dedf363cbe4f785c07cbf67b67830a3f88b3a6f17309010a8cf379
- SSDEEP
  
  12288:WJpOXg6QYZEEDBK51pF/0RP+xeQKg30xFAE4sLF8tW5XWQyYa7VROtv7:WSXgWYpFj+g39sLOtUyd7W1
Score

10^/10

truebot downloader
- TrueBot payload
- TrueBot, Silence.Downloader
  A downloader attributed to Silence group first seen in 2017.
  downloader truebot
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

truebotdownloader

behavioral2

truebotdownloader

© 2018-2024

Terms | Privacy