buer | 1c8260f2d597cfc1922ca72162e1eb3f8272c2d18fa41d77b145d32256c0063d | Triage

Submit
Reports

Static

static

1

web.exe

windows7_x64

web.exe

windows10_x64

Sharing

General

Target

web.exe
Size

95KB
Sample

201130-5s697nzqy6
MD5

bf613fe70f790d4b932601daa60a8797
SHA1

b53db9020c6115cea9e36dc9764bd45e5d9cfd6c
SHA256

1c8260f2d597cfc1922ca72162e1eb3f8272c2d18fa41d77b145d32256c0063d
SHA512

ce53eab5bd74fc2c70cf01d44597e63f50d27d2baaaf25cb166ab0f2c83add4773d936bbbebdfe03b30cd0a677b6b269abf8c8af02b3597c055a149e416db286

Score

10^/10

buer loader

Static task

static1

Behavioral task

behavioral1

Sample

web.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

web.exe

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

buer

C2

basiliskbank.com

Targets

- Target
  
  web.exe
- Size
  
  95KB
- MD5
  
  bf613fe70f790d4b932601daa60a8797
- SHA1
  
  b53db9020c6115cea9e36dc9764bd45e5d9cfd6c
- SHA256
  
  1c8260f2d597cfc1922ca72162e1eb3f8272c2d18fa41d77b145d32256c0063d
- SHA512
  
  ce53eab5bd74fc2c70cf01d44597e63f50d27d2baaaf25cb166ab0f2c83add4773d936bbbebdfe03b30cd0a677b6b269abf8c8af02b3597c055a149e416db286
Score

10^/10

buer loader
- Buer
  Buer is a new modular loader first seen in August 2019.
  loader buer
- Buer Loader
  Detects Buer loader in memory or disk.
- Loads dropped DLL
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy