buer | ec27d887ecafb4501d41b95382f56fa5f727e463ccae204fd4a8ff2ca0b6bffc | Triage

Submit
Reports

Overview

overview

Static

static

1

Internet-Win7-30min

windows7_x64

Sharing

General

Target

logo12.jpg.exe
Size

273KB
Sample

210307-vpvlhyrfbe
MD5

9c6eb9a93726c622ab4c13e324035122
SHA1

9e8ab2e00c8b2858790066c728b48b6c10f4c1e9
SHA256

ec27d887ecafb4501d41b95382f56fa5f727e463ccae204fd4a8ff2ca0b6bffc
SHA512

8658bb1164bab522cb6083d5083fd3a57f7e2e9b2c5edbf1a4c4ebb6481574d88df8ca6ad05110424df58d1a439e2eff1f4554f5665e566ffaf598e50890bbec

Score

10^/10

buer loader

Static task

static1

Behavioral task

behavioral1

Sample

logo12.jpg.exe

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

buer

C2

zeogertabank.com

Targets

- Target
  
  logo12.jpg.exe
- Size
  
  273KB
- MD5
  
  9c6eb9a93726c622ab4c13e324035122
- SHA1
  
  9e8ab2e00c8b2858790066c728b48b6c10f4c1e9
- SHA256
  
  ec27d887ecafb4501d41b95382f56fa5f727e463ccae204fd4a8ff2ca0b6bffc
- SHA512
  
  8658bb1164bab522cb6083d5083fd3a57f7e2e9b2c5edbf1a4c4ebb6481574d88df8ca6ad05110424df58d1a439e2eff1f4554f5665e566ffaf598e50890bbec
Score

10^/10

buer loader
- Buer
  Buer is a new modular loader first seen in August 2019.
  loader buer
- Buer Loader
  Detects Buer loader in memory or disk.
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy