Overview

overview

10

Static

static

3

2024-04-17...il.exe

windows7-x64

10

2024-04-17...il.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-17_f3b6732764f9e9bedad4fa9ba49ed9b9_mafia_magniber_revil

  • Size

    17.9MB

  • Sample

    240417-eyhzjsfa71

  • MD5

    f3b6732764f9e9bedad4fa9ba49ed9b9

  • SHA1

    54ab9c12f874f450b621455bc0998df3564d6c07

  • SHA256

    b72c460f3821ebf78b9e63db68018c02b2dedabc0275e7da6c2b6ba6a1855bdf

  • SHA512

    9cdfde3547551c822bc5483310a375fa7ed33c26b0cc8e2380c1c43346f318a9b3a505ae6aa324d13aa53a71b3751e7a957b00871676cb720cfcb640516148d2

  • SSDEEP

    393216:vBKpslY8RjrATHn3IgjYMoKRKZVJJZ6JWug7xV73:vZAH4gjaKgfvhtV73

Score
10/10
banloaddownloaderdroppertrojan

Malware Config

Targets

    • Target

      2024-04-17_f3b6732764f9e9bedad4fa9ba49ed9b9_mafia_magniber_revil

    • Size

      17.9MB

    • MD5

      f3b6732764f9e9bedad4fa9ba49ed9b9

    • SHA1

      54ab9c12f874f450b621455bc0998df3564d6c07

    • SHA256

      b72c460f3821ebf78b9e63db68018c02b2dedabc0275e7da6c2b6ba6a1855bdf

    • SHA512

      9cdfde3547551c822bc5483310a375fa7ed33c26b0cc8e2380c1c43346f318a9b3a505ae6aa324d13aa53a71b3751e7a957b00871676cb720cfcb640516148d2

    • SSDEEP

      393216:vBKpslY8RjrATHn3IgjYMoKRKZVJJZ6JWug7xV73:vZAH4gjaKgfvhtV73

    Score
    10/10
    banloaddownloaderdroppertrojan

    • Banload

      Banload variants download malicious files, then install and execute the files.

      trojandropperdownloaderbanload

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks