General
-
Target
70bf5ad01da89bexeexeexeex.exe
-
Size
518KB
-
Sample
230708-y6v4maaa39
-
MD5
70bf5ad01da89b22b925c8a2359dd1c9
-
SHA1
fab41ee13ab221510eeca72d268fe9e6cd41a224
-
SHA256
9c3467347337d5edeae9fbef7b6a3de595a0349671cf27f686f94b182bcdb731
-
SHA512
5eb3819042050a15fadcdc5cbb039221180ea1141fa1950554ece52728693aa5b7c1edec7d0faa18462be8889d0cebb2433aa29596e8b8526de936ffe98d8d7a
-
SSDEEP
12288:Zx1Q61iHsXYvfVpMODDawkCurdEtttY+lE4Wg0uZKE6:ZXQUIsQpMsequrmGQ/T0sl6
Static task
static1
Behavioral task
behavioral1
Sample
70bf5ad01da89bexeexeexeex.exe
Resource
win7-20230703-en
Malware Config
Targets
-
-
Target
70bf5ad01da89bexeexeexeex.exe
-
Size
518KB
-
MD5
70bf5ad01da89b22b925c8a2359dd1c9
-
SHA1
fab41ee13ab221510eeca72d268fe9e6cd41a224
-
SHA256
9c3467347337d5edeae9fbef7b6a3de595a0349671cf27f686f94b182bcdb731
-
SHA512
5eb3819042050a15fadcdc5cbb039221180ea1141fa1950554ece52728693aa5b7c1edec7d0faa18462be8889d0cebb2433aa29596e8b8526de936ffe98d8d7a
-
SSDEEP
12288:Zx1Q61iHsXYvfVpMODDawkCurdEtttY+lE4Wg0uZKE6:ZXQUIsQpMsequrmGQ/T0sl6
-
Trickbot x86 loader
Detected Trickbot's x86 loader that unpacks the x86 payload.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-