Overview

overview

10

Static

static

9fc59f68d5...9d.dll

windows7_x64

10

9fc59f68d5...9d.dll

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9fc59f68d528d95e13a706e6f5c8cc9d.dll

  • Size

    357KB

  • Sample

    210112-x5vxsf4b9x

  • MD5

    9fc59f68d528d95e13a706e6f5c8cc9d

  • SHA1

    64b3489a39907d5a8adc8fabf18afeb6f573a97e

  • SHA256

    bd8fb3c8abf97cdd741af7e8fd921a3b5d4a1efde9490933e405baa8f5226101

  • SHA512

    a1e5df2e959ced5b4d16bfbbef512e2129e3d82e4fd799ad6e24728a29903617b54a1c7af322215a5899ab03cd51f17eaa8e57a27644398c8a08e42c42cf3712

Score
10/10
zloadergoogleaktualizacijagoogleaktualizacija2botnettrojan

Malware Config

Extracted

Family

zloader

Botnet

googleaktualizacija

Campaign

googleaktualizacija2

C2

https://iqowijsdakm.com/gate.php

https://wiewjdmkfjn.com/gate.php

https://dksaoidiakjd.com/gate.php

https://iweuiqjdakjd.com/gate.php

https://yuidskadjna.com/gate.php

https://olksmadnbdj.com/gate.php

https://odsakmdfnbs.com/gate.php

https://odsakjmdnhsaj.com/gate.php

https://odjdnhsaj.com/gate.php

https://odoishsaj.com/gate.php
rc4.plain
rsa_pubkey.plain

Targets

    • Target

      9fc59f68d528d95e13a706e6f5c8cc9d.dll

    • Size

      357KB

    • MD5

      9fc59f68d528d95e13a706e6f5c8cc9d

    • SHA1

      64b3489a39907d5a8adc8fabf18afeb6f573a97e

    • SHA256

      bd8fb3c8abf97cdd741af7e8fd921a3b5d4a1efde9490933e405baa8f5226101

    • SHA512

      a1e5df2e959ced5b4d16bfbbef512e2129e3d82e4fd799ad6e24728a29903617b54a1c7af322215a5899ab03cd51f17eaa8e57a27644398c8a08e42c42cf3712

    Score
    10/10
    zloadergoogleaktualizacijagoogleaktualizacija2botnettrojan

    • Zloader, Terdot, DELoader, ZeusSphinx

      Zloader is a malware strain that was initially discovered back in August 2015.

      trojanbotnetzloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks