General
-
Target
a855015d1b3bc071dd877b63dde05982.exe
-
Size
207KB
-
Sample
201105-nzynhzktdn
-
MD5
a855015d1b3bc071dd877b63dde05982
-
SHA1
594b8ce5c06791ca80b652e59127f7271e160101
-
SHA256
0e3fe57105c5d2358d08d628a455c5d5629e95e8352c1f9f7327683fb8dbe81d
-
SHA512
bc88f0797d7e10fbdab71499889cbffbaed604bdd7798597754b595e8a9472f453167c8b6379e91cf43ab14b3f4790097abb2d0da4e373e0dc6fe1df01598309
Static task
static1
Behavioral task
behavioral1
Sample
a855015d1b3bc071dd877b63dde05982.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
a855015d1b3bc071dd877b63dde05982.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
a855015d1b3bc071dd877b63dde05982.exe
-
Size
207KB
-
MD5
a855015d1b3bc071dd877b63dde05982
-
SHA1
594b8ce5c06791ca80b652e59127f7271e160101
-
SHA256
0e3fe57105c5d2358d08d628a455c5d5629e95e8352c1f9f7327683fb8dbe81d
-
SHA512
bc88f0797d7e10fbdab71499889cbffbaed604bdd7798597754b595e8a9472f453167c8b6379e91cf43ab14b3f4790097abb2d0da4e373e0dc6fe1df01598309
Score8/10-
Tries to connect to .bazar domain
Attempts to lookup or connect to a .bazar domain, used by BazarBackdoor, Trickbot, and potentially others.
-