Static task
static1
Behavioral task
behavioral1
Sample
sample.exe
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
sample.exe
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
General
-
Target
7fca2f5368ec20999f8876cfcc84004a7966936b2d49d0158687de5f91056f90.bin.sample.gz
-
Size
223KB
-
MD5
003260b20b9f49f027dae33125800d81
-
SHA1
9e1f3b21d9348b949537383e9b326ed321c5675d
-
SHA256
8cbe68491e93a7e6f8801c37bcc90313b5e2259efc5320c930831e423212b589
-
SHA512
b0fc9c4840ded95a023a04e5d4eceade0f149e823e49a041a2be804617c410b2a1be8846d71a539a512c5c978836e83756e31d8c04d13105ef5ebeee665ba679
Score
10/10
Malware Config
Signatures
-
Bazar/Team9 Backdoor payload 2 IoCs
Processes:
resource yara_rule sample BazarBackdoorVar4 static1/unpack001/sample BazarBackdoorVar4 -
Bazarbackdoor family
Files
-
7fca2f5368ec20999f8876cfcc84004a7966936b2d49d0158687de5f91056f90.bin.sample.gz.gz
Password: infected
-
sample.exe windows x64