Genel Bakış

Carbanak, milyarlarca dolara neden oldu.

MalwareBazaar İstihbarat Verileri

Hash Örnekleri (İlk 50)

SHA256MD5İlk GörülmeTipBoyut
16d2e5a617f5ab0170c8... 80c15cecf6afaaa0... 2024-09-10 exe 339.968
5ddea1187e48e56a27f1... a25c475045e24d3c... 2024-01-02 exe 352.536
1627864360a89600e3af... d7442535c5f6e26f... 2023-12-22 exe 449.686
64d66908a9872c8ab173... e4f810018457919a... 2021-09-24 dll 106.496
48d208b87b29d50bb160... b8e1e5b832e5947f... 2021-06-14 exe 231.529
2b03806939d1171f063b... e9cc087daf5db6de... 2020-08-06 elf 4.329.888

IOC Özeti

  • Bu analiz 6 adet benzersiz Carbanak örneğini kapsar.
  • Toplam 12 hash IOC kayıt altına alındı.
  • Kampanya aktivitesi: 2020-08-06 ile 2024-09-10 arasında tespit edildi.

Carbanak — Malware Profile

Carbanak (FIN7/Anunak) finansal APT. 1 milyar dolar soygun. ATM cashout, SWIFT fraud. Rusya kaynaklı.

Malware Type
Other
Programming Language
C++
C2 Protocol
HTTP
Target Systems
Windows
Also Known As (AKA)
FIN7

Capabilities & Behavior

Zararlı Yazılım Aktivitesi
Kalıcılık Mekanizması
C2 İletişimi
Anti-Analiz

IOC List (24 indicators)

IOC — Carbanak
# SHA256 16d2e5a617f5ab0170c869dbfe68087d21d4e6923d60e0ea58cc6cabe353da0c # SHA256 5ddea1187e48e56a27f1878198a899c68a4a690105eb8bc5d687a698a94d64d3 # SHA256 1627864360a89600e3af3ed18127844331999de65909cd1ef8af371c10c1eec4 # SHA256 64d66908a9872c8ab1733d34ee664910cdd729925aa9fc61cae68dc3e6367efb # SHA256 48d208b87b29d50bb160f336c94b681e232b0f90e8c02175e593d60737369c13 # SHA256 2b03806939d1171f063ba8d14c3b10622edb5732e4f78dc4fe3eac98b56e5d46 # SHA256 16d2e5a617f5ab0170c869dbfe68087d21d4e6923d60e0ea58cc6cabe353da0c # SHA256 5ddea1187e48e56a27f1878198a899c68a4a690105eb8bc5d687a698a94d64d3 # SHA256 1627864360a89600e3af3ed18127844331999de65909cd1ef8af371c10c1eec4 # SHA256 64d66908a9872c8ab1733d34ee664910cdd729925aa9fc61cae68dc3e6367efb # SHA256 48d208b87b29d50bb160f336c94b681e232b0f90e8c02175e593d60737369c13 # SHA256 2b03806939d1171f063ba8d14c3b10622edb5732e4f78dc4fe3eac98b56e5d46 # MD5 80c15cecf6afaaa03d1e0d3337f16ea0 # MD5 a25c475045e24d3c832cca216935890f # MD5 d7442535c5f6e26f440d2a12d56dff7e # MD5 e4f810018457919ac1b0669a608ee5d0 # MD5 b8e1e5b832e5947f41fd6ae6ef6d09a1 # MD5 e9cc087daf5db6de52cd7c741e86c58f # MD5 80c15cecf6afaaa03d1e0d3337f16ea0 # MD5 a25c475045e24d3c832cca216935890f # MD5 d7442535c5f6e26f440d2a12d56dff7e # MD5 e4f810018457919ac1b0669a608ee5d0 # MD5 b8e1e5b832e5947f41fd6ae6ef6d09a1 # MD5 e9cc087daf5db6de52cd7c741e86c58f
TypeValueNote
sha256 16d2e5a617f5ab0170c869dbfe68087d21d4e6923d60e0ea58cc6cabe353da0c MB:Carbanak
sha256 5ddea1187e48e56a27f1878198a899c68a4a690105eb8bc5d687a698a94d64d3 MB:Carbanak
sha256 1627864360a89600e3af3ed18127844331999de65909cd1ef8af371c10c1eec4 MB:Carbanak
sha256 64d66908a9872c8ab1733d34ee664910cdd729925aa9fc61cae68dc3e6367efb MB:Carbanak
sha256 48d208b87b29d50bb160f336c94b681e232b0f90e8c02175e593d60737369c13 MB:Carbanak
sha256 2b03806939d1171f063ba8d14c3b10622edb5732e4f78dc4fe3eac98b56e5d46 MB:Carbanak
sha256 16d2e5a617f5ab0170c869dbfe68087d21d4e6923d60e0ea58cc6cabe353da0c MB:Carbanak
sha256 5ddea1187e48e56a27f1878198a899c68a4a690105eb8bc5d687a698a94d64d3 MB:Carbanak
sha256 1627864360a89600e3af3ed18127844331999de65909cd1ef8af371c10c1eec4 MB:Carbanak
sha256 64d66908a9872c8ab1733d34ee664910cdd729925aa9fc61cae68dc3e6367efb MB:Carbanak
sha256 48d208b87b29d50bb160f336c94b681e232b0f90e8c02175e593d60737369c13 MB:Carbanak
sha256 2b03806939d1171f063ba8d14c3b10622edb5732e4f78dc4fe3eac98b56e5d46 MB:Carbanak
md5 80c15cecf6afaaa03d1e0d3337f16ea0 MB:Carbanak
md5 a25c475045e24d3c832cca216935890f MB:Carbanak
md5 d7442535c5f6e26f440d2a12d56dff7e MB:Carbanak
md5 e4f810018457919ac1b0669a608ee5d0 MB:Carbanak
md5 b8e1e5b832e5947f41fd6ae6ef6d09a1 MB:Carbanak
md5 e9cc087daf5db6de52cd7c741e86c58f MB:Carbanak
md5 80c15cecf6afaaa03d1e0d3337f16ea0 MB:Carbanak
md5 a25c475045e24d3c832cca216935890f MB:Carbanak
md5 d7442535c5f6e26f440d2a12d56dff7e MB:Carbanak
md5 e4f810018457919ac1b0669a608ee5d0 MB:Carbanak
md5 b8e1e5b832e5947f41fd6ae6ef6d09a1 MB:Carbanak
md5 e9cc087daf5db6de52cd7c741e86c58f MB:Carbanak
Tags
bulkiocmalwarebazaarbanking trojancarbanak