Overview

overview

10

Static

static

84e360a829...d4.dll

windows7_x64

10

84e360a829...d4.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    84e360a829386b13dbf487803bc7b8a04f68b9b743ebfa3c9eea76abe00773d4.zip

  • Size

    493KB

  • Sample

    201029-4gzbz2dp92

  • MD5

    158a1a52f6bdca57a38e40d9cab76bd2

  • SHA1

    b641485a670091922b40da071b796aef7a816c77

  • SHA256

    c9421f3337c485aee66f75a1015f76b8b772fc144d7e56b11c5afb9f801aeb88

  • SHA512

    cf857b778a686a8ee37763035e69f8efa43366716f18078fa4e0efd436210d4ce899f9a2426258f5e4af71c77c6fafcf1e45bd9d92167e74dbfcb48bf4e00ed0

Score
10/10
zloadernut26/10botnettrojan

Malware Config

Extracted

Family

zloader

Botnet

nut

Campaign

26/10

C2

https://kare.academy/wl9nfl.php

https://skal.tk/a0qqpr.php

https://casascala.isoladelba.it/1lhdcb.php

https://tamilgreets.com/0vjkrn.php

https://ahoracallao.com/kzqlgx.php

https://shbiolabs.com/gkqm9o.php

https://bmavan.com/qshecj.php

https://barsoleillevant.fr/czdhxu.php

https://innovabusiness.cv/assly0.php

https://mevededustderin.tk/wp-smarts.php
rc4.plain
rsa_pubkey.plain

Targets

    • Target

      84e360a829386b13dbf487803bc7b8a04f68b9b743ebfa3c9eea76abe00773d4.dll

    • Size

      652KB

    • MD5

      142cf09ef1d30a422dbf43803e7c1517

    • SHA1

      f1d680faed22c11ffcc8d103bbed2794ca1089f0

    • SHA256

      84e360a829386b13dbf487803bc7b8a04f68b9b743ebfa3c9eea76abe00773d4

    • SHA512

      75700b1bef08eedc36cfcf93449e3575140d94dca96108d663252debbe48303ab97dc2b0b2b4a1c5139f857fb307b54807630c524b31adfa11b53d9820ebd183

    Score
    10/10
    zloadernut26/10botnettrojan

    • Zloader, Terdot, DELoader, ZeusSphinx

      Zloader is a malware strain that was initially discovered back in August 2015.

      trojanbotnetzloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks