Overview

overview

10

Static

static

3

1dc5e73b01...9c.exe

windows7-x64

10

1dc5e73b01...9c.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1dc5e73b01d0338d6d3f63906571bc49944107492b038a08088d0676fc313d9c

  • Size

    6.1MB

  • Sample

    240808-tnnvdawbjq

  • MD5

    63b9123b8628da85960afa32622f3351

  • SHA1

    88f88598e00790c9458c64ac2d01c8c86eb55d2d

  • SHA256

    1dc5e73b01d0338d6d3f63906571bc49944107492b038a08088d0676fc313d9c

  • SHA512

    369d347327c866fa96aae69c18c8c040d4d2236156e9f949af77d954e541a82e4e946c1c107c0da21a5811d7e9c93007a61bf3c0a907845012016c8da6399f68

  • SSDEEP

    196608:p8G1WGKhPnsw49+s1bU6nFLOyomFHKnP:p8G1N4nsS36F

Score
10/10
banloaddiscoverydownloaderdropperevasiontrojan

Malware Config

Targets

    • Target

      1dc5e73b01d0338d6d3f63906571bc49944107492b038a08088d0676fc313d9c

    • Size

      6.1MB

    • MD5

      63b9123b8628da85960afa32622f3351

    • SHA1

      88f88598e00790c9458c64ac2d01c8c86eb55d2d

    • SHA256

      1dc5e73b01d0338d6d3f63906571bc49944107492b038a08088d0676fc313d9c

    • SHA512

      369d347327c866fa96aae69c18c8c040d4d2236156e9f949af77d954e541a82e4e946c1c107c0da21a5811d7e9c93007a61bf3c0a907845012016c8da6399f68

    • SSDEEP

      196608:p8G1WGKhPnsw49+s1bU6nFLOyomFHKnP:p8G1N4nsS36F

    Score
    10/10
    banloaddiscoverydownloaderdropperevasiontrojan

    • Banload

      Banload variants download malicious files, then install and execute the files.

      trojandropperdownloaderbanload

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks