Analysis
-
max time kernel
149s -
max time network
151s -
platform
windows10_x64 -
resource
win10v20201028 -
submitted
08-11-2020 17:49
Static task
static1
Behavioral task
behavioral1
Sample
9d57ec6e663f46abf405bdac91ebdef7d5deeaed77a30d6f9b7dd1d88903640e.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
9d57ec6e663f46abf405bdac91ebdef7d5deeaed77a30d6f9b7dd1d88903640e.exe
Resource
win10v20201028
General
-
Target
9d57ec6e663f46abf405bdac91ebdef7d5deeaed77a30d6f9b7dd1d88903640e.exe
-
Size
135KB
-
MD5
9f1cc37493887eeb8eb5995f45983b98
-
SHA1
6e03f8713abf9cd893dbf911fe6cf93a6481f62d
-
SHA256
9d57ec6e663f46abf405bdac91ebdef7d5deeaed77a30d6f9b7dd1d88903640e
-
SHA512
c6625516096180cfc7a98a7056b6723fe9f0f0d9b4d2ec27ee8e5932ce66b8e9071d3e188b6e207072eab34b6e031ac8100c169477b8f7bab7eb8bc9c5a5947d
Malware Config
Signatures
-
BazarBackdoor 1 IoCs
Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
Processes:
description flow ioc HTTP URL 28 https://164.68.120.60/0145982651951962705622347565991739006783/2