Overview

overview

10

Static

static

3

7c62084336...a4.exe

windows7-x64

10

7c62084336...a4.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7c620843361c577c94297f4a16eba109328dd8880b776b6764baeb2d898865a4

  • Size

    4.9MB

  • Sample

    240402-2whx4aga6s

  • MD5

    84077d0d389983e7dc332740ccbade19

  • SHA1

    51e54abab6878b1c14a71557a2c48152b829df8c

  • SHA256

    7c620843361c577c94297f4a16eba109328dd8880b776b6764baeb2d898865a4

  • SHA512

    3620a43ac1b287aaf65ce0c8f06f594f70adf1f9791c4ffc7df4631611accff9f58dc6e9777ee7729874db5a895bc26632bf21fdb264cc24346fc23f04333543

  • SSDEEP

    98304:GS5I0l9dF0PWG/tPfX8i3hmwIAbhSO9qBS6g1lu:GS5j9mPB/VX8MmzA9RsSx

Score
10/10
banloaddownloaderdropperevasiontrojan

Malware Config

Targets

    • Target

      7c620843361c577c94297f4a16eba109328dd8880b776b6764baeb2d898865a4

    • Size

      4.9MB

    • MD5

      84077d0d389983e7dc332740ccbade19

    • SHA1

      51e54abab6878b1c14a71557a2c48152b829df8c

    • SHA256

      7c620843361c577c94297f4a16eba109328dd8880b776b6764baeb2d898865a4

    • SHA512

      3620a43ac1b287aaf65ce0c8f06f594f70adf1f9791c4ffc7df4631611accff9f58dc6e9777ee7729874db5a895bc26632bf21fdb264cc24346fc23f04333543

    • SSDEEP

      98304:GS5I0l9dF0PWG/tPfX8i3hmwIAbhSO9qBS6g1lu:GS5j9mPB/VX8MmzA9RsSx

    Score
    10/10
    banloaddownloaderdropperevasiontrojan

    • Banload

      Banload variants download malicious files, then install and execute the files.

      trojandropperdownloaderbanload

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks