banload | b90ebe6b57cf9b036b6b751a2431d7b782a619dbc18ea03bdf5f5211ab312715 | Triage

Sharing

General

Target

2024-05-26_ddaec9851414d47ebc2c4ff204570cd7_mafia
Size

2.9MB
Sample

240526-eh5tdaeb2z
MD5

ddaec9851414d47ebc2c4ff204570cd7
SHA1

35b8c7cdc3bcc4a606b36fcbfd797de535300eeb
SHA256

b90ebe6b57cf9b036b6b751a2431d7b782a619dbc18ea03bdf5f5211ab312715
SHA512

43e889261bceb0732150e2505d351e9097b23766f1cf3965c9a33a8345f9e3ffe086c5f0833609c2b8e321f3383ba582a0ccc7e67fff8cebf4df7c0658e00321
SSDEEP

49152:GIBnIYp4t6oT4QLrUl43SzuXmQ7l2mCK+MTYNG0Zms3Xkp88q9ZgOC:GIBIYdQLw6iiWmXTkrlk3q9a

Score

10^/10

banload downloader dropper evasion trojan

Malware Config

Targets

- Target
  
  2024-05-26_ddaec9851414d47ebc2c4ff204570cd7_mafia
- Size
  
  2.9MB
- MD5
  
  ddaec9851414d47ebc2c4ff204570cd7
- SHA1
  
  35b8c7cdc3bcc4a606b36fcbfd797de535300eeb
- SHA256
  
  b90ebe6b57cf9b036b6b751a2431d7b782a619dbc18ea03bdf5f5211ab312715
- SHA512
  
  43e889261bceb0732150e2505d351e9097b23766f1cf3965c9a33a8345f9e3ffe086c5f0833609c2b8e321f3383ba582a0ccc7e67fff8cebf4df7c0658e00321
- SSDEEP
  
  49152:GIBnIYp4t6oT4QLrUl43SzuXmQ7l2mCK+MTYNG0Zms3Xkp88q9ZgOC:GIBIYdQLw6iiWmXTkrlk3q9a
Score

10^/10

banload downloader dropper evasion trojan
- Banload
  Banload variants download malicious files, then install and execute the files.
  trojan dropper downloader banload
- Identifies VirtualBox via ACPI registry values (likely anti-VM)
  evasion
- Checks BIOS information in registry
  BIOS information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Virtualization/Sandbox Evasion

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

banloaddownloaderdropperevasiontrojan

behavioral2

banloaddownloaderdropperevasiontrojan