Overview

overview

10

Static

static

3

e7ba3d3528...a0.exe

windows7-x64

10

e7ba3d3528...a0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e7ba3d3528399c31d8f79b1713040a2e8559a6ba25fef26c19b47d07710be9a0

  • Size

    2.4MB

  • Sample

    240831-296lba1dpn

  • MD5

    c333f1dc22c3e849d3d0fd43eb795ec0

  • SHA1

    7bdfcf928ca3d13e34f8d75e06ea392e7e3ac19c

  • SHA256

    e7ba3d3528399c31d8f79b1713040a2e8559a6ba25fef26c19b47d07710be9a0

  • SHA512

    3f32fe6f4744753f414b69e94f29f895649a8b5d60baf5b0c628c505af7ec78adaff66d608d583431094c05d88ace806de2296843cef3224d187ec525404efbc

  • SSDEEP

    49152:pcv0sr0X2TOmnOqTHUo5SzU0q5VWy7EeNetl7hpFo1E1utEjC9WLOwo7:pcvRfOqTHUo5SQPtQA6l7XFo1EAtEjCf

Score
10/10
banloaddiscoverydownloaderdropperevasiontrojan

Malware Config

Targets

    • Target

      e7ba3d3528399c31d8f79b1713040a2e8559a6ba25fef26c19b47d07710be9a0

    • Size

      2.4MB

    • MD5

      c333f1dc22c3e849d3d0fd43eb795ec0

    • SHA1

      7bdfcf928ca3d13e34f8d75e06ea392e7e3ac19c

    • SHA256

      e7ba3d3528399c31d8f79b1713040a2e8559a6ba25fef26c19b47d07710be9a0

    • SHA512

      3f32fe6f4744753f414b69e94f29f895649a8b5d60baf5b0c628c505af7ec78adaff66d608d583431094c05d88ace806de2296843cef3224d187ec525404efbc

    • SSDEEP

      49152:pcv0sr0X2TOmnOqTHUo5SzU0q5VWy7EeNetl7hpFo1E1utEjC9WLOwo7:pcvRfOqTHUo5SQPtQA6l7XFo1EAtEjCf

    Score
    10/10
    banloaddiscoverydownloaderdropperevasiontrojan

    • Banload

      Banload variants download malicious files, then install and execute the files.

      trojandropperdownloaderbanload

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks