Resubmissions

09/10/2020, 19:20

201009-j3jjsz2eaa 10

09/10/2020, 18:52

201009-4etj67wz72 10

General

  • Target

    Report10-9

  • Size

    391KB

  • Sample

    201009-j3jjsz2eaa

  • MD5

    240bf9b477fe3d977acbb2726f0f12b5

  • SHA1

    7992ff5fa99a123690a97e0d645d231c0e2c23bf

  • SHA256

    ce4b691637ed4be850404802326effa438b306d7af5538c12d6627fad9d26ab3

  • SHA512

    ab6027dd8d362475c226e75fcffc64fc92b6da9906c1eabf0581e315ea275ed0d6b5ba670a3239501b52be56cb6acc769bcdff56b88dc7db0c80f04fb92522ba

Score
10/10

Malware Config

Targets

    • Target

      Report10-9

    • Size

      391KB

    • MD5

      240bf9b477fe3d977acbb2726f0f12b5

    • SHA1

      7992ff5fa99a123690a97e0d645d231c0e2c23bf

    • SHA256

      ce4b691637ed4be850404802326effa438b306d7af5538c12d6627fad9d26ab3

    • SHA512

      ab6027dd8d362475c226e75fcffc64fc92b6da9906c1eabf0581e315ea275ed0d6b5ba670a3239501b52be56cb6acc769bcdff56b88dc7db0c80f04fb92522ba

    Score
    10/10
    • BazarBackdoor

      Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.

    • Blacklisted process makes network request

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v6

Tasks