1ae793fb1d53cf5b1b393c348592220eec76d6def504dcb09f4686920d2e28d2

General
Target

1ae793fb1d53cf5b1b393c348592220eec76d6def504dcb09f4686920d2e28d2

Size

332KB

Sample

200910-yc81hdjgh2

Score
10 /10
MD5

a41429f7dbecfb76e6b7534afbeb4f74

SHA1

68f48d169b4f62189b3e43c3615aa7e4314e9459

SHA256

1ae793fb1d53cf5b1b393c348592220eec76d6def504dcb09f4686920d2e28d2

SHA512

6957ba5090a5e36feec28fb5d4abeab7ec068ceb212bc7b3f2a10ac568f80b4a925e5d9b0815fc9e936897924c51d9c51fa1af35da508b2d6e0a179c26797bf6

Malware Config
Targets
Target

1ae793fb1d53cf5b1b393c348592220eec76d6def504dcb09f4686920d2e28d2

MD5

a41429f7dbecfb76e6b7534afbeb4f74

Filesize

332KB

Score
5 /10
SHA1

68f48d169b4f62189b3e43c3615aa7e4314e9459

SHA256

1ae793fb1d53cf5b1b393c348592220eec76d6def504dcb09f4686920d2e28d2

SHA512

6957ba5090a5e36feec28fb5d4abeab7ec068ceb212bc7b3f2a10ac568f80b4a925e5d9b0815fc9e936897924c51d9c51fa1af35da508b2d6e0a179c26797bf6

Tags

Signatures

  • Bazar Loader

    Description

    Detected loader normally used to deploy BazarBackdoor malware.

    Tags

  • Suspicious use of SetThreadContext

Related Tasks

MITRE ATT&CK Matrix
Collection
    Command and Control
      Credential Access
        Defense Evasion
          Discovery
            Execution
              Exfiltration
                Impact
                  Initial Access
                    Lateral Movement
                      Persistence
                        Privilege Escalation
                          Tasks

                          static1

                          behavioral1

                          10/10

                          behavioral2

                          5/10