bazarbackdoor | a80d4625145eb2ef5d81cc258d9d7a2b620fce21277ad97a8c5b93c3002a87d9 | Triage

Sharing

General

Target

7ff7fa7e0000.cmd.exe
Size

248KB
Sample

201103-xdhhggfz2j
MD5

fc6e357d3894acca20ccc49dd813d76f
SHA1

3d6d46f2e308590d0646a40d8c7690c9669b4b0c
SHA256

a80d4625145eb2ef5d81cc258d9d7a2b620fce21277ad97a8c5b93c3002a87d9
SHA512

aa260a0a11a19006f3a434bade411cf15e5928476d6eec6c9d8d864c4a703f791202cb11f56e73fd66dee3c0e890b32227ee6f20fb028159d42687ceb889675f

Score

10^/10

bazarbackdoor backdoor

Malware Config

Targets

- Target
  
  7ff7fa7e0000.cmd.exe
- Size
  
  248KB
- MD5
  
  fc6e357d3894acca20ccc49dd813d76f
- SHA1
  
  3d6d46f2e308590d0646a40d8c7690c9669b4b0c
- SHA256
  
  a80d4625145eb2ef5d81cc258d9d7a2b620fce21277ad97a8c5b93c3002a87d9
- SHA512
  
  aa260a0a11a19006f3a434bade411cf15e5928476d6eec6c9d8d864c4a703f791202cb11f56e73fd66dee3c0e890b32227ee6f20fb028159d42687ceb889675f
Score

10^/10

bazarbackdoor backdoor
- BazarBackdoor
  Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
  backdoor bazarbackdoor
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bazarbackdoorbackdoor

behavioral2