Overview

overview

10

Static

static

3

50889d87ef...cc.exe

windows7-x64

10

50889d87ef...cc.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    50889d87ef7f0fe21afdf99401ef1bc76befbe2213ad3128d3cf2021e64dfdcc

  • Size

    2.4MB

  • Sample

    240720-eg7atayeng

  • MD5

    0d5213dcf8c179ecc54d4c6764f2260d

  • SHA1

    70e5835880e2e22d7150f17be785ce02a3243ad9

  • SHA256

    50889d87ef7f0fe21afdf99401ef1bc76befbe2213ad3128d3cf2021e64dfdcc

  • SHA512

    48fa11c139e70d3e1487155ecdd58b69d35ecf0f9bf0872272325b1daa990bdf36cc5ec63ff511d0f83b9a85cff1c7dea1b03f28e4cca221eee14b5d46505d21

  • SSDEEP

    49152:ocv0srTX2TOmBwJX7qKfuD0q5VWy7EeNjBaXkL:ocvRUqJX7qKfePtQAYXkL

Score
10/10
banloaddownloaderdropperevasiontrojan

Malware Config

Targets

    • Target

      50889d87ef7f0fe21afdf99401ef1bc76befbe2213ad3128d3cf2021e64dfdcc

    • Size

      2.4MB

    • MD5

      0d5213dcf8c179ecc54d4c6764f2260d

    • SHA1

      70e5835880e2e22d7150f17be785ce02a3243ad9

    • SHA256

      50889d87ef7f0fe21afdf99401ef1bc76befbe2213ad3128d3cf2021e64dfdcc

    • SHA512

      48fa11c139e70d3e1487155ecdd58b69d35ecf0f9bf0872272325b1daa990bdf36cc5ec63ff511d0f83b9a85cff1c7dea1b03f28e4cca221eee14b5d46505d21

    • SSDEEP

      49152:ocv0srTX2TOmBwJX7qKfuD0q5VWy7EeNjBaXkL:ocvRUqJX7qKfePtQAYXkL

    Score
    10/10
    banloaddownloaderdropperevasiontrojan

    • Banload

      Banload variants download malicious files, then install and execute the files.

      trojandropperdownloaderbanload

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks