Overview

overview

10

Static

static

1254515.dll

windows7_x64

10

1254515.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1254515.dll

  • Size

    843KB

  • Sample

    210307-rfel7cn7k6

  • MD5

    c247335cbbfc2f607e43773d8c1c0f4a

  • SHA1

    707ab78dab9cf2b5277e668eb1c59be42af6549f

  • SHA256

    0d1774171175d150cc859a71fc56cd6a8132c9c679d3bd5c7f065126ed2a071e

  • SHA512

    6f2c9f2647703aeef053e00b298ce10c1636f839ab5310416b57b496f98e7ffc2fca311938794138930cee95b6dc964c51c81c0570739fc040563ccb79c1412d

Score
10/10
zloadergoogleaktualizacijagoogleaktualizacija2botnettrojan

Malware Config

Extracted

Family

zloader

Botnet

googleaktualizacija

Campaign

googleaktualizacija2

C2

https://iqowijsdakm.com/gate.php

https://wiewjdmkfjn.com/gate.php

https://dksaoidiakjd.com/gate.php

https://iweuiqjdakjd.com/gate.php

https://yuidskadjna.com/gate.php

https://olksmadnbdj.com/gate.php

https://odsakmdfnbs.com/gate.php

https://odsakjmdnhsaj.com/gate.php

https://odjdnhsaj.com/gate.php

https://odoishsaj.com/gate.php
rc4.plain
rsa_pubkey.plain

Targets

    • Target

      1254515.dll

    • Size

      843KB

    • MD5

      c247335cbbfc2f607e43773d8c1c0f4a

    • SHA1

      707ab78dab9cf2b5277e668eb1c59be42af6549f

    • SHA256

      0d1774171175d150cc859a71fc56cd6a8132c9c679d3bd5c7f065126ed2a071e

    • SHA512

      6f2c9f2647703aeef053e00b298ce10c1636f839ab5310416b57b496f98e7ffc2fca311938794138930cee95b6dc964c51c81c0570739fc040563ccb79c1412d

    Score
    10/10
    zloadergoogleaktualizacijagoogleaktualizacija2botnettrojan

    • Zloader, Terdot, DELoader, ZeusSphinx

      Zloader is a malware strain that was initially discovered back in August 2015.

      trojanbotnetzloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks