trickbot | beb931b038bc246edc47e20530240fa54db79891eae777339592695bdfc0c7df

General

Target

2e0fa9f0617523c887ee355d0c1b6767_JaffaCakes118
Size

228KB
Sample

240510-jh881sah6w
MD5

2e0fa9f0617523c887ee355d0c1b6767
SHA1

8f58e5d81e6b9d556f2c9544b69ba9531e3cf47e
SHA256

beb931b038bc246edc47e20530240fa54db79891eae777339592695bdfc0c7df
SHA512

36fe189cb006c798dd8ac53b9fcf1586bf74f2ee3f2c02b7c5f10a162e2db8b49ced1c7ceaf0fadb84aceb1c875b2146d85e70fefeff125f258968f7ba41b0d8
SSDEEP

3072:L5z2gTPdFG0m5cFk1oOG5UP2s56S9NKEI+Bcl/hJik6heuZn4fUCtbBLrISecqZu:hTGBMmk5Jik64utgPIgqZzQpZ

Score

10^/10

trickbot sat28

Malware Config

Extracted

Family

trickbot

Version

1000322

Botnet

sat28

C2

107.175.127.149:443

24.247.182.240:449

108.174.120.172:449

107.174.34.202:443

24.217.49.92:449

24.217.192.131:449

97.87.175.152:449

185.252.144.21:443

24.247.182.169:449

198.46.160.217:443

24.247.182.167:449

24.247.182.253:449

192.3.52.107:443

177.104.252.32:449

68.111.123.100:449

209.191.203.238:449

24.113.169.148:449

103.55.69.238:449

23.94.36.143:443

187.189.235.2:449

Attributes

autorun
Control:GetSystemInfo
Name:systeminfo
Name:injectDll
Name:pwgrab

ecc_pubkey.base64

Targets

- Target
  
  2e0fa9f0617523c887ee355d0c1b6767_JaffaCakes118
- Size
  
  228KB
- MD5
  
  2e0fa9f0617523c887ee355d0c1b6767
- SHA1
  
  8f58e5d81e6b9d556f2c9544b69ba9531e3cf47e
- SHA256
  
  beb931b038bc246edc47e20530240fa54db79891eae777339592695bdfc0c7df
- SHA512
  
  36fe189cb006c798dd8ac53b9fcf1586bf74f2ee3f2c02b7c5f10a162e2db8b49ced1c7ceaf0fadb84aceb1c875b2146d85e70fefeff125f258968f7ba41b0d8
- SSDEEP
  
  3072:L5z2gTPdFG0m5cFk1oOG5UP2s56S9NKEI+Bcl/hJik6heuZn4fUCtbBLrISecqZu:hTGBMmk5Jik64utgPIgqZzQpZ
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

Sharing

General

Malware Config

Extracted

Targets

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2